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Abstract 



We present a process semantics for the purely additive fragment of linear logic in 
which formulas denote protocols and (equivalence classes of) proofs denote multi- 
channel concurrent processes. The polycategorical model induced by this process 
semantics is shown to be equivalent to the free polycategory based on the syntax 
(i.e., it is full and faithfully complete). This establishes that the additive fragment 
of linear logic provides a semantics of concurrent processes. Another property of this 
semantics is that it gives a canonical representation of proofs in additive linear logic. 

This arXived version omits Section 11.7.11 "Circuit diagrams for polycategories" as 
the }§i:^-pic diagrams would not compile due to lack of memory. For a complete 
version see 

< http : //www . cpsc . ucalgary . ca/~pastroc/ > . 
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Chapter 
Introduction 



Since the introduction of linear logic by Girard |Gir87j . people have believed that 
it should somehow provide a logic of concurrent communication. This intuition, 
however, has turned out to be rather difficult to substantiate in practice. In a 
seminal paper, Abramsky and Jagadeesan |AJ94j describe a game model for the 
multiplicative fragment of linear logic (MLL) with the MIX rule: formulas denote 
games and proofs denote winning strategies. As they point out, a game can be seen 
as a process; in fact, they provide a "dictionary" translating between the terminology 
of the two areas. The basic idea behind game semantics is to interpret a formula 
as a two-player game between "player" and "opponent" , and proofs of formulas as 
"winning strategies" for the player. Using this idea, a proof can then be seen as an 
interaction between player and opponent. In terms of processes, one thinks of the 
player as the "system" , the opponent as the "environment" , and winning strategies 
for the player as "deadlock free processes" . In this view, therefore, a proof can be 
seen as a process or system interacting with its environment. 

Game semantics has turned out to be a remarkably effective tool for providing 
fully abstract semantics for programming languages. Its initial success was in pro- 
viding the first syntax-free, fully abstract model for Scott's language PCF |Sco93j . 
given independently by Abramsky, Jagadeesan, and Malacaria |AJM00j . Hyland 
and Ong [HOnnj . and Nickau |Nic96j . Since then game semantics has provided fully 
abstract models for other programming languages with various other features, such 
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as richer type structures, different evaluation strategies, non-determinism, etc. (see, 
e.g., |AM98al lUHnnl IHM991 IHqQSI IMc( ^96j ) . 

As pointed out by Abramsky and Mellies |AM99j . these types of game models 
do not, however, provide a model of concurrent communication. A play in these 
"sequential" games is a fixed interleaving of player and opponent moves. In |AM99j . 
Abramsky and Mellies generalize games to "concurrent games" , in which they aban- 
don this interleaving of moves, and construct games in which both the player and 
opponent act in a distributed, asynchronous fashion. They announce in |AM99j that 
the concurrent games model is a "good" (i.e., fully complete; see below) model of 
multiplicative-additive linear logic. 

In |A,T94j ■ Abramsky and Jagadeesan introduce the notion of a fully complete 
model of a logic. Given a logic L and a categorical model of that logic M, full 
completeness says that for any formulas A and B of the logic, any morphism / : 
lAj IBJ in the M-interpretation of £ is the interpretation of a proof oi A \- B. 
One may also ask for a stronger notion: that any map in the model is the denotation 
of a unique proof. The term "full" is derived from category theory; that a model be 
fully complete is equivalent to requiring that the functor from the free category based 
on the syntax to the model is full. That any map in the model is the denotation 
of a unique proof is equivalent to requiring that this functor also be faithful. The 
construction of fully complete and full and faithfully complete models is of interest 
in its own right as it provides insights into the proofs of a logic. For a recent survey 
see !RHSn3j . 

In this thesis we present a process semantics for the additive fragment of linear 
logic. As indicated above, this semantics could alternatively have been described 
as a game theoretic semantics, and indeed, many of the ideas and terminology 
are derived from this view. The games (processes) which we introduce are quite 
different from the Abramsky- Jagadeesan or Hyland-Ong style of games, and are 
perhaps more in the spirit of the money games of Joyal |Joy95c| and the games of 
Luigi Santocanale |Sann2bj . 

That the additive fragment of linear logic is particularly relevant to the perspec- 
tive of proofs as processes began to be suspected when Joyal started his investiga- 
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tion of free bicompletions of categories |Joy95al |Joy95b| and their relationship to 
hnear logic. Cockett and Seely, in their efforts to understand Joyal's work, then 
investigated the logic of finite sums and products |CS01j and realized that this was 
precisely the logic of communication along a single (two-way) channel. Their logic 
is a fragment of additive linear logic, restricted to exactly one formula on each side 
of the turnstile. By removing this restriction and allowing an arbitrary number of 
formulas on each side of the turnstile we get the logic used in this thesis, which we 
(also) call En. EII is a slightly untraditional presentation of the additive fragment 
of linear logic in that the sums and products are indexed by arbitrary finite sets, 
which is equivalent to binary sums and products with the nullary cases. 

In this thesis we develop four equivalent views of concurrent processes: a process 
semantic view, a proof theoretic view, a term representation view, and a categor- 
ical view. The proof theoretic view is our starting point. We begin with the SII 
logic and consider proofs as processes. The process semantics is used to show that 
proofs in SII do, in fact, correspond to concurrent processes. This, of course, is 
what validates the claim that our other views are of concurrent processes. The term 
representation provides terms as processes. Since it is known that the terms corre- 
spond to concurrent processes, they can now be viewed as a programming language 
for these processes. In the categorical view, concurrent processes are represented by 
morphisms in a polycategory. The proof that all four views of concurrent processes 
are equivalent also uses categorical ideas. 

A more detailed account is as follows. We begin with the logic EII. Cut- 
elimination rewrites are presented for this logic, but in order for the cut-elimination 
rewrite system to be Church- Rosser, it is also necessary to give some equivalence 
rewrites for proofs which allows the interchange of rules: the so-called "permuting 
conversions" . 

Motivated by the interpretation of proofs as processes, two term representations 
for proofs in SII are developed: a term calculus representation and a "programming 
language" representation. The first step to view processes as terms is to view for- 
mulas as "protocols" assigned to a channel. For example, to view the formula X + Y 
as a protocol it is assigned a channel, say a, and each subformula is assigned an 
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"event" resulting in a : {x : X + y : Y) . Proofs may now be viewed as "multi-channel 
processes". If / is a proof the sequent a : X \- j3 : Z viewed as a process and g a 
proof of a : Y \- (3 : Z viewed as a process, then a proof of a : {x : X + y : Y) \- P : Z 
may be viewed as the process 



it is X then do the process /, and if it is y then it will do the process g." 

The cut-elimination rewrites and permuting conversions may be represented us- 
ing these terms. The notation "f;yg'^ will be used to indicate cutting the proofs 
/ and g together on the channel 7. If we interpret cut as communication, cut- 
elimination then is the dynamics of communication. As an example consider the 
terms 



The first term is interpreted as, "output a on 7 and then do the process /." The 
second term as, "wait for an input event on 7. If it is the event a then do the process 
g and if it is the event b then do the process h." If we tell these two processes to 
communicate on 7 it should be obvious that after one step of communication they 
will evolve to the process / communicating with the process g on 7, i.e., 



These processes look very sequential in nature, but the permuting conversions are 
hiding the fact that these are concurrent processes! 

As terms are much easier to manipulate than proofs, they are used to show 
that the rewriting system induced by the cut-elimination rewrites is Church-Rosser 
and terminating modulo the equivalences. A decision procedure is presented which 
allows us to determine if two (cut-free) terms of the same type (derivations of the 
same sequent) are equivalent, i.e., that they are related by the equivalence rewrites. 

A polycategory of processes may be formed by considering protocols as objects. 




This process can be read as, "wait for an input event to occur on the channel a. If 




and 





5 



multi-channel processes (the terms) as morphisms, and communication as compo- 
sition. It is shown that this is the free polycategory with finite sums and finite 
products. Following Joyal's and Cockett and Seely's lead, we prove a "Whitman 
theorem" which gives a characterization of the free polycategory with finite sums 
and products over a base polycategory in terms of characterizations of the hom sets. 

Finally, a process semantics for SH-terms is presented. This semantics illustrates 
precisely how the terms correspond to channel-based concurrent processes. The 
rough idea is as follows. We define the notion of a behaviour, which is an explicit 
representation of the history of a process. These are typically represented using 
tables, e.g.. 









b 


d 


e 




c 


c 


a 


d 


a 


a 


/? 


7 


S 



This behaviour represents outputting c and then receiving d on channel a, receiving 
a and then e on (3, and so on. From behaviours there is no way to tell the order that 
the events occurred, however, this is necessary. To see this consider the process: 




'P[d]{g) 



It is easily seen that this process is unable to produce an output on P until it has 
first received an event on a. That is, there is a hierarchy on events. This motivates 
the use of "entailments" . An entailment is a behaviour with a distinguished output 
event. If all the events in the behaviour have occurred then the output event may 
be performed. The following set of entailments 



a 




a 


f3 



h/3[c]. 





b 


a 









a 


c 


a 





b 


d 


a 


f3 



^9 



encodes the hierarchy on events of the process above. Sets of entailments (satisfying 
the seven rules defined in Chapter E)) are what we call "extensional processes". These 
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are what gives us our interpretation of proofs as concurrent processes. 

A polycategory of extensional processes is constructed and shown to be equiv- 
alent to the polycategory of processes. This proves that this model satisfies the 
property that every process is the denotation of a unique cut-free proof, i.e., it is a 
full and faithfully complete model. 

Some of the previous results are essentially an extension from the (ordinary) 
categorical case to the polycategorical case of the results of Cockett and Seely |CS01j . 
On occasion I have used the exposition found therein when it is much clearer than 
I could hope to achieve. Errors in these sections, as in the rest of the text, are of 
course solely my responsibility. 

Outline of this thesis This thesis is organized as follows: Chapter ^ introduces 
some standard concepts of category theory and the notion of a polycategory. The 
concepts here will be needed throughout the thesis. Chapter |2l presents the Ell-logic. 
In Chapter El we develop two term representations for derivations in this logic: a 
term calculus and a "programming language" representation. A rewrite system for 
cut-elimination is presented and shown to be Church-Rosser and terminating. The 
proof of decidability for these terms is also presented in this chapter. Chapter H] 
is devoted to proving that SIIa is the free polycategory built over an arbitrary 
polycategory A. In Chapter El we present a process semantics for our logic. This 
semantics is shown to provide a full and faithfully complete polycategorical model 
for our logic. 

Contributions of this thesis In Chapter|21the description of additive linear logic 
is a new presentation of this fragment. Chapter IHl contains two term representations 
which are essentially new to this thesis, as is the presentation of cut-elimination 
and the decision procedure for terms. Chapter |31 contains a new polycategorical 
presentation of additive linear logic and the development of the Whitman theorem 
for this setting. Chapter El contains the description of extensional processes, which 
is the main novel aspect of this thesis. 



Chapter 1 

Categorical Preliminaries 



This chapter is meant to give a brief introduction to category theory and also to 
help accustom the reader with the notation that will be used throughout this thesis. 
For a more complete introduction to category theory see, e.g., |ML98j or |BW99j . 

1.1 Categories 

A category C consists of a class of objects, ob(C) (or Co), for each pair of objects 
A and B, a class of morphisms (or arrows), C{A, B), for each object A, an identity 
morphism id^ G C{A, A), and for each triple of objects. A, B, and C, a composition 
law 

C{A,B) X C{B,C) C{A,C) 

satisfying: 

• if / G C{A,B) then the domain (or source) of / is dom(/) = A and the 
codomain (or target) of / is cod(/) = B. 

• iif:A^B then id^; / = /; ids = /■ 

• /; {g;h) = {f;g);h whenever either side is defined, i.e., composition is asso- 
ciative. 
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When it is clear from the context we will omit the label ob(C) and simply refer to 
an object A G ob(C) as A G C. We will sometimes write Hom(A, B) or just {A, B) 
to mean C{A^B) when this will not lead to confusion. A morphism / G C{A,B) 
may also be written £ls f : A ^ B or A — > B. For any composible pair of arrows 
f : A ^ B and g : B ^ C we will sometimes denote their composition in the 
usual manner with a o as (7 o / (as opposed to the diagrammatic order /; g that we 
typically use). We often omit the o and simply write gf but we will never omit the 

Note that when we defined the notion of a category we did not say that the 
collection of objects constitute a set. Indeed, in the most famous of categories, 
Set, where the objects are sets and the morphisms are functions between sets, the 
collection of all sets is not itself a set. This motivates the following definitions: 
a category is called small if its objects constitute a set, and large otherwise. If 
C{A, B) is a set for all objects A, i? G C then C is called locally small. 

If C is a category, then its dual C°p, is defined by ob(C°P) = ob(C) and 
C°P(A, i?) = C{B^A). That is, the dual of a category is the category with all 
its arrows reversed: if / : A — S is an arrow in C then / : i? — A is an arrow in 
C°P. It is clear that the dual of a category is also a category. 

1.2 Properties of morphisms 

An arrow f : A ^ B m a, category C is called monic (or a monomorphism) if for 
any object C G C and arrows x,y : C ^ A such that x; f = y; f then x = y. The 
dual of a monomorphism is an epic (or epimorphism), i.e., an arrow f : A ^ B is 
epic if for any object C and arrows x,y : B ^ C such that f;x = f;y then x = y. 
An arrow f : A ^ B is called an isomorphism if there is an arrow g : B ^ A such 
that f; g = idj^ and g; f = ids- If / is an isomorphism then the arrow g is uniquely 
determined and is usually called the inverse of /. If such an isomorphism exists, we 
say that A is isomorphic to B and denote this as A = B. 
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1.3 Sums and products 

If A and B are objects in a category C then by the product of A and B we mean 
an object C together with arrows pi : C — > A and p2 : C ^ B (called the first and 
second projections respectively) such that for any object D and arrows f : D ^ A 
and g : D ^ B there is a unique arrow q : D ^ C making the following diagram 
commute: 



D 



A 




The dual of a product is a sum (or coproduct). That is, if A and B are objects 
in a category C then the coproduct of A and B is an object C together with arrows 
bi : A ^ C and 1)2 : B ^ C (called the first and second injections respectively) such 
that for any object D and arrows f : A ^ D and g : B ^ D there is a unique arrow 
q : C ^ D making the following diagram commute: 



D 




The product of A and B is typically denoted as A x B and the unique arrow 
from D to Ax B as (/, g). The coproduct of A and B is typically denoted as A + B 
and the unique arrow from A + B to D as {f\g). 

For products (and dually for sums), it can be shown that A x B is isomorphic 
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to B X A. To see this consider the diagram 



AxB 




A B 




BxA 



and the unique arrows from the definition that make this diagram commute. 



1.4 Equalizers and coequalizers 

Let C be a category and f,g:A=^Bhea, parallel pair of arrows. An equalizer 
of / and g is an object E together with an arrow e such that 

(i) e; / = e; g, and 

(ii) for any object Q and arrow q : Q ^ A such that q; f — q; g, there is a unique 
arrow h : Q ^ E such that h;e = q. 

Dually, a coequalizer oi f, g : A ^ B is a,n object C together with an arrow 
c: B ^ C such that 

(i) f;c^ g; c, and 

(ii) for any object Q and arrow q : B ^ Q such that f;q — g', q, there is a unique 
arrow h : C ^ Q such that c;h — q. 



1.5 Functors 

Let C and D be categories. A functor F : C ^ Y) between categories is a pair of 
maps Fo : Co ^ Dq and Fi : C{A, B) D(Fo(A), Fq{B)), for all objects A,B eC, 
satisfying 
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. F,{f■,g) = F^{fy,F,{g) 

It is standard practice to omit the subscripts from the functor when the context is 
clear. The brackets may also be omitted when they are not required to disambiguate 
precedence. Thus, we will sometimes write FA and Ff to mean Fo{A) and -Fi(/) 
respectively. 

For any category C there is an identity functor, idc : C — > C, defined in the 
obvious way. 

Two categories C and D are said to be isomorphic, denoted C = D, if there 
are a pair of functors F : C — > D and G : D ^ C such that F;G — idc and 
G; F = ido. 



1.6 Natural transformations 

Given two functors F, G : C — > D, a natural transformation a : F ^ G consists 
of a family of morphisms a a ■ FA ^ GA, one for each object A e C, such that for 
any morphism f : A ^ B in C the following diagram commutes. 




FB 



CUB 



GB 



We call the aA the component of the natural transformation at A. 

For any functor F : C ^ D there is an identity natural transformation idi? : 
F ^ F defined by (idi;')^ = id^A- 

A natural transformation o:F^Gis called a natural isomorphism if every 
component a a is invertible in D. In this case we say that F and G are isomorphic 
and write F = G. 

Two categories C and D arc said to be equivalent if there are functors F : C ^ 
D and G : D ^ C such that F; G ^ idc and G; F ^ ido- 
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1.7 Poly categories 



A plancir polycategory P consists of the following data 



• a class Pq of objects of P, 



• for each m, n e N and xi, . . . , Xm, • • • , 2/n G Po, a set 



P(xi, ...,Xm; yi,...,yn) 



whose elements are called polymorphisms. Using F and A to represent strings 
of elements of Pq, the polymorphisms in P(r ; A) may be denoted / : F — > A 
or r h/ A where dom(/) = T and cod(/) = A. 

together with 

• for each x e Pq, an identity morphism 1^ e P{x,x) 

• an operation 



called cut, restricted to the cases where either Fi or Ai is empty and cither 
r2 or A2 is empty. (This restriction is called the crossing (or planarity 
condition), cf. circuit diagrams below.) Explicitly, this gives four cut rules: 



p(r; Ai, x, A2) X P(ri, X, A) ^ p(ri, r, r2; Ai, a, A2) 



P(ri;Ai,x) xP(x,r2;A2) 
P(ri;a;,Ai) x P(r2,x;A2) 
P(r;x) xP(ri,a;,r2;A) - 
P(r;Ai,x,A2) xP(x;A) - 



mcut 



mcut°P 



-^P(ri,r2;Ai,A2) 

■.P(r2,ri;A2,Ai) 

p(ri,r,r2;A) 



.P(r;Ai,A,A2) 



These data are subject to three axioms: 



• cut has identities, i.e., the following diagrams commute 
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p(ri,x,r2;A) 



P(r;Ai,y,A2 



P(x,x) X P(ri,x,r2;A) 




cut 




P(ri,a;,r2;A) 
P(r;Ai,y,A2)xP(y,y) 

cut 



P(r;Ai,|/,A2) 
cut is associative, i.e., the following diagram commutes 



P(ri;r2,x,r3) ^^^^^ 

xP(Ai,a;, Aa; Aa.y, A4) 

XP($1,J/, <I>2;*3) 



P(Ai,ri, A2;r2, A3,x, A4,r3) 
xP($i, J/, *2; $3) 



P(ri;r2,x,r3) 

xP($i, Ai, A2, 4-2; A3, $3, A4) 



P($l, Al,ri, A2,$2;r2, A3,$3, A4,r3) 



Recall that cut is subject to the crossing condition; writing this restriction 
explicitly would result in nine separate commutative diagrams. 

cut satisfies the interchange law (originally referred to as "commutativity" by 
Lambek |Lam69j ) . i.e., the following diagrams commute 



P(ri;r2,x,r3,y,r4) x p(Ai,x, A2; A3) 1x7 ^ P(ri;r2,x,r3,j/,r4) x P(*i,y,'i'2;*3) 

xPC^i,!/, 4>2;'I>3) ^ xP(Ai,x, A2; A3) 



p(Ai,ri, A2;r2, A3,r3,s/,r4) 

xP(*i, j;, ^2; *3) 



P(<i>i,ri,*2;r2,x,r3,*3,r4) 

xP(Ai,x, A2; A3) 



p(<i>i, Ai,ri, A2,*2;r2, A3,r3,$3,r4) 



p(Ai,$i,ri,$2, A2;r2, A3,r3,<i>3,r4) 
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P(ri;r2,a;,r3) 7X1^ 
xP(Ai; A2,2/, A3) X P($i,a:,*2,y,*3;*4) * 



P(ri;r2,a;,r3) 
xP(*i, a;, #2, Ai, $3; A2, #4, A3) 



P(*l,ri,$2,Ai,*3;r2,A2,*4,A3,r3) 



P(Ai;A2,'i/,A3) 
xP(ri;r2,a;,r3) X P(*i,a:,*2,y,*3;*4) 



P(Ai; A2,S/, A3) 

xP(*i,ri,*2,2/,*3;r2,'i>4,r3) 



p($i, Ti, $2, Ai, $3; A2, r2, $4, r3, A3) 



where : A x B — ^ B x A is the isomorphism for products. Similarly here 
writing out the crossing condition explicitly would give four separate diagrams 
for each of the above diagrams. 

A symmetric polycategory P is a polycategory equipped with a symmetric 
action, i.e., for permutations a e Sm, r e S„ (where is the group of permutations 
on k objects) , a map 

P(r;A) ^^P(ar;rA) 

where aV — a{xi, . . . ,Xn) — {xa{i), ■ ■ ■ Xa{n)), satisfying the following coherence 
conditions. 

• The symmetric actions may be composed. 

P(r; A) ^— ^ P(ar, rA) 



P(a'(ar),r'(rA)) 

• That the next four diagrams commute assert that cutting and then permuting 
the objects is equivalent to first permuting the objects and then cutting. 



P(r;A,x) X P(x,r';A') 



CUtf 



.p(r,r';A,A') 



'^a\a',T\T' 



P((7r; tA, x) X P(x, (jT; t'A') 



CUtr 



■ P((7r, (jT; tA, t'A') 
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P(r;x, A) X P(r',a;; A) 



CCT,a;|TXCo.'|a;,T' 



P(ar;a;,rA) x P(aT', x; r'A') 



P(r',r;A',A) 



<j' a.T' T 



P((tT', ar;r'A',rA) 



mcut 



p(ri,r,r2;A) 



P(r;x) X P(ri,x,r2;A) 



p(ar; x) X p(r;, x, r- tA) — — - p(r;, ar, r- tA) 



where T'^, -, r'2 = a(ri, -, T2). 



P(r;Ai,x,A2) X P(x;A) 



mcut°P 



P(r;Ai,A,A2) 



P(ar; a;, X, A'2) X P(x; r'A) ^ P(ar; A^, r'A, A'^ 



where A;, -, A2 = r(Ai, -, A2) 

We will only be concerned with symmetric polycategories in this thesis and so 
will refer to the symmetric version of polycategories simply as polycategories. 

1.7.1 Circuit diagrams for polycategories 

Note This section has been removed for the arXived version of this thesis. The 
diagrams would not compile. For a complete version see 



< http : /Twww . cpsc . ucalgary . ca/ ^pastroc/ ^ . 



1.7.2 Morphisms of polycategories 

F 

Let P and Q be polycategories. A morphism P ^ Q between polycategories 

is a pair of maps Fq : Pq ^ Qo and Fi : P(r; A) Q(F*(r); F*(A)), where 
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F*{Xi, . . . , Xn) = Fo(Xi), . . . , Fo(X„), such that the functor preserves identities, 

Fi(idA) = idFo(A) 

preserves composition, 

P(ri;r2,a;,r3) X P(Ai,x, A2; A3) — ^ P(Ai,ri, A2;r2, Ai.rs) 



and for symmetric polycategories, preserves the symmetric action, 

Q(F*(crr);F*(rA)) = QKF*(r)); r(F*(A))) 

Again here, we usually drop the subscripts and write F for both Fq and Fi. 

Notice that a morphism of polycategories is the polycategorical notion of a func- 
tor between regular categories. There is a more elaborate notion of a polyfunctor 
introduced in |CKS03j which will not be discussed here. 



As with functors, for any polycategory P, there is an obvious notion of an identity 
morphism of polycategories idp : P — P defined in the obvious way. 

Two polycategories P and Q are said to be isomorphic, denoted P = Q, if 
there are a pair of morphisms of polycategories F : P ^ Q and G : Q ^ P such 
that F;G = idp and G; F = idq. 

For a much more detailed exposition on polycategories and poly-bicategories see, 
e.g., [HK^ IT^. 

Remark 1.7.1 (Notation for polycategories) Until now we have avoided using 
any notation to represent the cut rule. Typically, one represents the cut rule using a 
"positional" notation, i.e., the object to cut on is specified by an index. For example, 
given 

Fi — ^ F2 and Ai A2 
the notation fi;j g indicates that we are cutting the i-th component of F2 with the 
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j-th component of Ai, provided the requirements for cut are satisfied. 

In this thesis we take a somewhat different approach. Instead of using a "posi- 
tional" notation as above, we will use a "referential" notation. For each morphism 
in a polycategory we label the "wires" (or "channels") and use these labels to in- 
dicate which object we are cutting on. To prevent ambiguity, we require that each 
wire of a polymorphism receives a unique name, and make the restriction that cuts 
may only occur between polymorphisms which have no wire name in common (so 
that after the cut each wire still has a unique name). (This can be accomplished 
via a renaming procedure for wire names; we will not describe the details here.) For 
example, let 

ai: X,a2:Y a^: Z,a:W and f3 : W, /3i : S : T 

be polymorphisms. We may cut f on a : W with g on (3 : W, which we will write 

fa',l3g- 

Example 1.7.2 (Polycategories) 

1. Any category is a polycategory with one input and one output. 

2. Any (symmetric) multicategory (see, e.g., |Che02j ) is a (symmetric) polycat- 
egory with one output. 

3. Modules and multilinear maps form a multicategory (and hence a polycate- 
gory). 

4. Any (symmetric) linearly distributive category^ |(yS97j is an example of a 
(symmetric) polycategory. As symmetric linearly distributive categories with 
negation are the same as ^-autonomous categories (see |(^S97j for the details), 
this implies that any ^-autonomous category is an example of a polycategory. 

5. The primary example that this thesis is concerned with is: A Gentzen style 
sequent calculus (with multiple formulas on either side of the turnstile "h") 



Originally referred to as weakly distributive categories. 
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with formulas as objects and (equivalence classes of) derivations as the poly- 
morphisms forms a polycategory. 

Below is a concrete example which is worked out in more detail. This example 
provides the polycategorical version of an operad, and so is of some independent 
interest. 

Example 1.7.3 (A one-object polycategory) 

We may describe morphisms in a one-object polycategory (or polyad) using pairs 
consisting of labelled cyclic graphs and their related signatures, up to renaming 
of nodes. The nodes of the cyclic graphs are labeled with "channel" names. The 
signature of a graph indicates (from left-to-right) the ordering of its input and output 
wires. We will write these pairs simply as G : S, where G is a cyclic graph, and S 
is the signature, e.g.. 



(★) 



as : (cKi, a2, eta) (Qi4, cts) 




The above polymorphism may be thought of graphically as 





a4 CKs 
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or, in circuit notation, as 

«! OLi OL-i 




a4 0:5 

Note that we are labeling the channels where one typically labels the objects, 
however, this is natural as, in this example, there is only one object. 

This polymorphism may also be denoted using a cyclic permutation presentation 
as follows 

(«!, as, as, a4, 0:2) : (ai, a2, as) (a4, as) 

Any cyclic permutation of a polymorphism represents the same polymorphism. 
Thus, an equivalent presentation of the above polymorphism is 

(0:2, «!, 0:3, as, : {ai, 0L2, as) (0:4, ^5) 
which can be presented in circuit notation as 

0L\ a.2 OLZ 



(X4 CKs 



The identity polymorphism in this setting is given by (a,/9) : (a) — > (fi). 
Composition is given by "gluing" two composible cyclic graphs together (to make 
larger cycles). For example, the composite of 

^ ai ^ 0:2 

Q;5 Q;3 : (q;i,q;2,Q;3) ^ (Q;4,a;5,x) 

^ 0:4 ^ X 
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and 



at the node x is 



0.5 
t 

0:4 



as 



j : (ai, q;2, as, A) ^ (a4, as, /^2, /^s) 
Pi 



This data can now be seen to satisfy the requirements of a symmetric polycate- 
gory. The actions of the symmetric group on these polymorphisms simply permute 
the domain and codomain of the nodes in the signature. That is 

c^^r{G : r ^ A) = G : (jr ^ tA 

For example, if cr((Q;i, 0:2, as)) = (q;2, ai, a^) and r((Q;4, a^)) = (015, a^) then 

c<T,r((ai,a3,Q;5,Q!4,a2) : (01,02,03) ^ (04, as)) 
= (oi, as, as, 04, 02) : (a2, ai, 03) (05, 04) 



which may be presented graphically as 

0:2 Oil a3 




05 0:4 
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This polycategory is, in fact, the polyad of a non-commutative cychc monoid (in 
any hnearly distributive category). 



Chapter 2 
SH-Poly Logic 



In this chapter we introduce SH-poly logic; this logic is an extension of the logic SII 
of Cockett and Seely |CS01j which allows an arbitrary number of formulas on each 
side of the turnstile instead of exactly one. In what follows we will refer to this logic 
(the Ell-poly logic) as SII. If there is a need to differentiate between the two logics 
it will be explicitly mentioned which logic, the Ell-poly logic or the Cockett-Seely 
Ell-logic, is under consideration. 

In Section EIU the sequent calculus for SII is introduced. In Section 123 the cut- 
elimination rewrites for Sll-derivations are presented. The proof that these rewrites 
terminate is left until the next chapter. In EH the identity axiom applies only in the 
atomic case; in Section|2ini it is shown that the identity holds for arbitrary formulas. 
Finally in Section EH we give some equivalence schema, the so-called "permuting 
conversions" , which are necessary in order for our system to have the Church- Rosser 
property. 

2.1 The sequent calculus 

The logic is presented in a Gentzen sequent style: a sequent takes the form F h 
A, where the antecedent F, and the succedent A, are comma separated strings of 
formulas. For convenience, we take the strings of formulas to be unordered which 
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then eliminates the need for the exchange rules: 

r, X, y, r h A r h a, y, 

r, y, X, r' h A r h a, y, A' 

The propositions are either atoms (which we write as A,B,...) or compound 
formulas (which we write as X,Y, . . .). A compound formula is either an /-ary 
sum, where / is a finite set, denoted J2iei-^i^ ^ product, denoted Hje/^i- 
The index set / may be empty which gives the empty sum and product, denoted 
^0 = and Yli/i — 1 respectively. For sufficiently small index sets we may write out 
the sum or product exphcitly, e.g., X + Y or X xY. 

A typical rule in the Gentzen sequent style looks hke 

TihAi r^hAa ■•• r„hA„ 

rh A 

where we read this as an inference from top-to-bottom, i.e., if all the sequents on 
the top (the Fj h A^'s) can be derived, then the sequent on the bottom (F h A) 
may be inferred. The special case is when there are no sequents on top 



F h A 

in which case we may simply infer the bottom with no assumptions. A proof (or 
deduction) of a sequent is a finite tree with the given sequent at the root, axioms 
at the leaves and internal nodes corresponding to inference rules. A Gentzen style 
presentation together with its inference rules is called a sequent calculus. The 
rules of inference for EH are as follows: 
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r 



A 



(identity) 



(cotuple) 



{rhy„A},g, 



(tuple) 



(projection) 



rhyfe,A 



(injection) 



r, n ^^ ^ A 



rhE^^,A 



where k e 1,1 



r h A, z z, r h A^ 
r, r h A, A' 



(cut) 



Notice that in the cotuple and tuple rules the index set / may be empty, though 
not in the injection and projection rules. 

Observe that the inference system for EII is self-dual, that is, it has an obvious 
sum-product symmetry. Explicitly, we may swap the direction of the sequents while 
turning sums into products and products into sums to obtain the same system. This 
means that each proof has a dual interpretation and can be "reused" to prove a dual 
theorem. 

We shall consider various augmentations of this basic logic: 

• The "initial logic" is the logic with no atoms. Notice that this is still a non- 
trivial logic because of the symbols S0 and which we may use to construct 
more complex formulas. We shall denote this logic as Sn0. 

• The "pure logic" is the logic with an arbitrary set of atoms A: we shall denote 
this logic as SII^. 

• The "free logic" is the logic with an arbitrary set of atoms and an arbitrary 
set of non-logical axioms relating lists of atoms. If / is a non-logical axiom 
from A, B to C, -D, this may be denoted as f : A, B ^ C , D oy as an inference 
A, B \- f C, D. The atoms will be regarded as objects in a polycategory and the 
axioms as maps in that polycategory (with the "essential cuts" being provided 
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by composition). If the polycategory is denoted A, the resulting logic will be 
denoted as SHa- 

If we think of the atoms of a pure logic as forming a discrete category, the free 
logic on this discrete category is then just the "pure" logic. Each variant above 
therefore includes the previous variant, and as it is more general, we shall tend to 
consider only this last variant. 

Example 2.1.1 (Ell-derivations) Some typical proofs in this logic. 

1. 

B\-B C\-C 



AhA AhA BhA+B ChA+C 



A^A + B A^A + C BxC^ A + B BxC^ A + C 
A^ {A + B) X (A + C) B X C ^ {A + B) X (A + C) 
A + {B xC)h {A + B) X (A + C) 

This is one direction of the proof that sums distribute over products. The 
other direction cannot be proved in our system. 



2. 



A\- A BhB 



AxBh A AxB^B 



A X B \- A X B C 



AxB^{AxB) + C C^{AxB) + C 
{Ax B) + C h {Ax B) + C 

This proves the identity inference. 

3. The above examples have only one proposition on each side of the turnstile. 
Here is an example in which each side has more than one proposition. In this 
case we will need some non-logical axioms. 

i: A,E^G,I k:C,F-^H,I 
J ■.B,E^G,J l:D,F^H,K 
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B, E \~j G, J 



D, FHH, K 



A, E^iG, I B,EhG,J + K C,FhkH,I D,FhH,J + K 



AxB,EhG,I Ax B,Eh G,J + K C x D,Fh H,I C xD,Fh H,J + K 



Ax B, EhG, I x{J + K) 
Ax B, EhG + H, I x{J + K) 



C xD, Fh H, I x{J + K) 
Gx D, FhG + H, I x{J + K) 



AxB, E X F h G + IL I x (J + A') C x D. E x F V- G + IL I x (J + K) 
{Ax B) + {G X D), ExF\-G + H, I x {J + K) 



2.2 Cut-elimination 

In this section we show that cut-ehmination holds for the free logic SHa, i.e., any 
proof can be rewritten so that it does not contain any applications of the cut rule. 
Of course, this process will get stuck on the introduced atomic polymorphisms. A 
cut between atomic axioms is called an essential cut: 

ri,Ai \-f.g r2,A2 

Proposition 2.2.1 (Cut-elimination) Any proof in the free logic EIIa can be 
transformed to a proof in which the only cuts are essential. 

We shall provide a family of rewrites for Ell-derivations and show that they 
terminate. As is typical in cut-elimination proofs, the rewrites will either replace 
a cut by cuts involving simpler formulas, or "push up" a cut into the surrounding 
proof. A proof that cannot be further rewritten using this set of rewrites will be a 
"cut-eliminated" proof in the sense of having no inessential cuts. 

The rewrites are as follows. It will always be assumed that i E I and j E J for 
index sets / and J. Duality will be used to reduce the number of rewrites presented. 

• Sequent-identity (identity-sequent): This rewrite removes the cut below an 
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identity axiom on the right. 

TT 



ThA,A Ah A 



TT 



The dual of this rewrite removes the cut below an identity axiom on the left. 

• Cotuple-sequent (sequent-tuple): This rewrite moves a cut which is below a 
cotupling and an arbitrary sequent above the cotupling. 



r,^x, hA,z z,r'hA' I r,Xi,rhA,A' 



r, E , r' h A, A' r, ^ ^i, r' h a, a' 

The dual of this rewrite moves the cut above a tupling on the right. 

Injection-sequent (sequent-projection): This rewrite moves a cut which is be- 
low an injection and an arbitrary sequent above the injection. There are two 
cases to consider: the cut is on the injection, or it is on an arbitrary formula. 
The rewrite for the former case is below (the injection-cotuple rewrite); the 
rewrite for the latter case is as follows. 

JL TT Tt' 



r h Xfc, A, z rhXfc,A,z z,rhA^ 

rhE^.,A,^ z,rhA- =^ r,r hXfc,A,A- 
r,r'hE^i,A,A' r,r'hE^^,A,A' 

The dual of this rewrite moves the cut above a projection on the right. 

Projection-sequent (sequent-injection): This rewrite moves a cut which is be- 
low a projection and an arbitrary sequent above the projection. 



r, h A, z r,XfchA,z z.rv N 

r,nx.^A,z zj'VM =^ r,x,,r h A,A^ 
r, n Xi, r h A, A' r, n x„ v h a, a' 
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The dual of this rewrite moves the cut above an injection. 

Tuple-sequent (sequent-cotuple): This rewrite moves a cut which is below 
a tuple and an arbitrary sequent above the tuple. There are two cases to 
consider: the cut is on the tupling, or the cut is on an arbitrary formula. The 
rewrite for the former case is dual to the injection-cotuple rewrite below; the 
rewrite for the latter case is as follows. 



rhiix„A,z z,r'hA' r, r h x,, a, 



r,r'hn^i,A,A' r,rhn^.,A,A' 

The dual of this rewrite moves the cut above a cotupling on the right. 

Injection-cotuple (tuple-projection): This rewrite moves the cut above an in- 
jection and cotupling. 



TC 



rhA,x. ix^r'hA' 



TT,; 



TT TTfe 



rhA,Xfc Xfc,rhA' 



T\-A,^Xi rr'i-A,A' 
r,r'hA,A' 



The dual of this rewrite moves the cut above a tupling and projection. 

This accounts for all the ways in which compound formulas are introduced either 
on the left or on the right above a cut, and we have shown how to move the cut 
above these rules. Thus, a proof which cannot be rewritten further must have an 
axiom above the cut on each side; this is an essential cut. 

It remains to show that this rewriting procedure terminates. For this we will 
need to define a measure on proofs which is reduced by each rewrite. The technical 
details and proof that the rewritings terminate will be presented in Chapter IHl 
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2.3 Identity derivations 

Our goal is to view this proof system as a polycategory where cut is the composition. 
The cut-ehmination process therefore provides part of the dynamics of composition: 
the activity which takes place when two proofs are plugged together. 

Part of proving that cut acts as a composition is showing that there are identity 
derivations which behave in the correct manner. The identity derivations are defined 
inductively as follows. 

• The identity atomic sequent: 

-j—^ (identity) 



The identity derivation on sums is given by 

Xi \~ Xi 



Y^Xih^Xi 

where the identity derivation of Xi h Xj is given by induction on the 
structure of Xi. 

• The identity on products is given by the dual of the proof above. Exphcitly, 

Xa \~ Xi 



Y{Xi^Y[Xi 

where the identity derivation tx^ of X^ h Xi is given by induction on the 
structure of Xi. 

The following lemma now proves that cutting (composing) any sequent derivation 
together with the identity derivation (and vise versa) results in the same sequent 
derivation. 
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Lemma 2.3.1 The sequent-identity and identity- sequent cut- elimination reductions 
are derivable reductions for the general identity derivations as defined above. That 
is, 



and similarly for the dual rule. 

Proof. We shall suppose that the identity derivation is on the right; duahty covers 
the other case. The proof is by structural induction on the derivation tt. 

• The base case is a cut with an atomic sequent: here the cut-elimination step 
removes the atomic identity and the result is immediate. 

• Next suppose the identity is on a sum type: 



There are four possibilities for the root inference of tt. 

(1) If the root inference is a cotupling the cut-elimination step moves the cut 
onto smaller proofs. We may now apply the inductive hypothesis to each of 
these smaller proofs which yields the required result. 



rhA,x xhx 

A,X 



TT 




TT L 




r,y, h A,Ex, 



^7 i 

r,F, hA,E^^ 



(2) If the root inference is an injection there are two possibilities: the cut is 
on E it is not. In the first case we use the injection-cotuple rewrite and 
the second case the injection-sequent rewrite. The injection-cotuple rewrite is 
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as follows. 



TT 



Xi h Xi 



TT <-fc 

r h A, Xk Xk \- Xk 



r h A, Xfc I i rhA,x, 

ri~A,X]^i ^Xji-YjXj r h A ^x 

rhA,E^i 

which moves the cut onto a smaller proof and so the inductive hypothesis 
applies and we are done. The injection-sequent rewrite is 

TT TT L 



which again moves the cut onto a smaller proof 

(3) If the root inference is a projection the cut-elimination step moves the cut 
onto a smaller proof and so we are done. 

TT TT L 



^,^>S^A,E^^ T,Y[Yj^ A,Y.Xi 



(4) If the root inference is a tupling the cut-elimination step moves the cut 
onto a smaller proof and so we are done. 



ThYj,A,Y.Xi 



Vh\{Yj,A,Y.Xi Y^Xj^lZXi 
T^\{Yj,A,Y.Xi 



ThY^,A,Y.X^ Y.Xi^Y.Xi 
VhYj,A,Y.Xi 

rhn^j,A,E^i 
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• Finally, suppose the identity is on a product type: 

TT L 

This case is very similar to the one above. In all the cases for the root inference 
of 71, other than tupling, the appropriate cut-elimination rewrite (e.g., when 
the root inference is a cotupling use the cotuple-sequent rewrite) will move the 
cut onto a smaller proof (or smaller proofs). 

For the case where the root inference is a tuphng there are two subcases to 
consider: the cut is on Yl Xi or it is not. In the latter case the tuple-sequent 
cut-elimination rewrite suffices to move the cut onto smaller proofs. The 
former case is unique in that we must apply two rewrites: a sequent-tuple 
followed by a tuple-projection. 



rhA,n^i 



vr,: 



rh A,X, 



Xi h Xi 



rhA,n^» 



r h A, X, 
rhA,n^i 



2.4 Permuting conversions 

In order to obtain a normal form for sequent derivations, we would like to show that 
the cut-elimination rewrites are Church-Rosser. Currently this is not the case; for 
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example, consider a derivation with a cotupling and tupling immediately above the 
cut: 



In this case one may apply the cotuple-scqucnt rewrite or the sequent-tTiplc 
rewrite to reduce the derivation, but there seems to be no way in which to resolve 
these rewrites. This motivates the use of additional rewrites which will allow us to 
interchange these two rules. Similar considerations for the nine other possible critical 
pairs (cotuple vs. cotuple, cotuple vs. injection, etc.) leads us to the following ten 
conversions (which we denote by l==l). Again, duality is used to reduce the number 
of conversions presented. 

• Cotuple-cotuple (tuple-tuple) interchange: 



TTii I ( TTij 




Y:X„T,Y.Y,hA ^X,,r,^YjhA 
Cotuple-injection (projection-tuple) interchange: 



r.xhn.A V {r,Xi\-Y^,A 



r,x,hEYj,A)^ ^ rEA',>n..A 



r,j:x,hj:Y^,A r,E^i^E^.-,A 

Cotuple-projection (injection-tuple) interchange: 



TT,; I TT, 



Xi,T,Yk^A } \X,,r,Yk\-AL 



x,,r,UYj^A)^ " j2x„r,Y,hA 



j:x,,r,UYjhA E^i,r,niS^A 
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Cotuple-tuple interchange: 



TTij I J VTjj 



Injection-injection (projection-projection) interchange: 

TT TT 



r h E A, E r h E x„ a, e 

Pro j ect ion-inj ect ion interchange : 



TT 71 



r,nx,hE>S,A r,nx.HE>^.,A 

It can now be shown that the cut-ehmination procedure for Sll-derivations is 
confluent modulo these permuting conversions. It is, however, more convenient to 
do so after providing a term representation for the S 11- derivations. As this is the 
purpose of the next chapter, the proof of confluence will also be presented there in 
Section 13.51 



Chapter 3 

Term Logic for SH-Poly Maps 



In this chapter we prove that the cut-ehmination rewrites are Church-Rosser and 
terminating modulo the permuting conversions. It will, therefore, be convenient to 
have a more compact notation for sequent derivations; this leads us to introduce a 
system of terms typed by sequents. 

The terms for the Sll-logic introduced in this chapter will reflect the view of the 
formulas as protocols and the proofs as processes. That is, that a proof of a sequent 
r h A may be regarded as a process between the protocols (the formulas) in F and 
A. As we shall see in the next chapter, these terms provide a categorical semantics 
for the logic: the free polycategory with sums and products. 

In order to motivate the term logic we shall start by introducing the view of 
this system as protocols and processes. In Section we then introduce two term 
representations for S 11- derivations: a compact term calculus representation and a 
"programming language" representation. A rewriting system for cut-elimination 
using these representations is developed. In Section 13. 4[ it is made explicit how 
the term calculus handles the additive units (the objects S0 and 110). Then, with 
our term calculus representation in hand, in Sections 13.51 and I3.fi| we prove that 
our cut-elimination rewriting system for the Ell-derivations has the Church-Rosser 
property and is terminating. Finally, in Section 13.71 we give a decision procedure 
for Sll-derivations. 
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3.1 Protocols and processes 

If we adopt the system/environment perspective it is natural to view polymorphisms 
as processes and the objects as protocols: the system is connected to the environ- 
ment via channels along which the environment may input to the system and the 
system may output to the environment, where the channels here allow two-way 
communication, i.e., on any given channel one may receive input and/or produce 
output. 

Protocols are assigned to channels along which processes can communicate (in 
both input and output mode). A protocol on a channel may be thought of as a 
convention between the system and the environment that dictates who may place 
the next event on that channel. We will adopt the convention of using Greek letters 
for channel names. Let S represent a system and E the environment such that they 
are connected via a channel a. Suppose P is a protocol which is only going to allow 
the system to output either the event a or the event b to the environment. Placing 
P on a between S and E, S <""^> E , allows S to output either the event a or the 
event b, and moreover, prevents E from inputing anything to S. 

A process should be regarded as an agent which acts on any number of channels 
by either accepting input events or producing output events in accordance with the 
protocols associated with each channel. Thus, it is a system communicating with the 
environment along a number of channels. For reasons that will become apparent, 
the channels a process interacts along are divided into (unordered) domain (or "in- 
put") channels and (unordered) codomain (or "output") channels. A process / with 
domain channels cti, . . . , q;„ and codomain channels . . . , may be represented 
graphically as 

«! an 
/ 

7 r 

Our convention will be to have the domain channels (the aj's) on the top and 
the codomain channels (the P/s) on the bottom. Recall that we are considering 
these channels unordered. If a codomain channel a of a process /, and a domain 



37 



channel /5 of a process g, share a common protocol then / and g may be "plugged" 
(or composed) together on a and (3 to form a new process. The domain channels 
of this composed process are the domain channels of / and the domain channels of 
g (minus f3) and the codomain channels are the codomain channels of / (minus a) 
and the codomain channels of g. This may be pictured graphically as 



where the double lines represent strings of channels. (This plugging together of 
processes is exactly the cut rule. This is explained in detail in Section 13. 3. 2|) . 

Note that any two processes may be plugged together on at most one channel. 
That is, situations like the following are not allowed: 



Physically, one could think of the channels as "wires", and the processes as 
black boxes which send events along these wires, where the protocols determine 
which events are allowed to be passed though the wires at any given moment. 

3.2 Formulas as protocols 

"Protocols" in our system will simply be Ell-terms annotated with channel names 
and "events". Formally, a protocol may be either: 

• an atomic protocol: A, B,C, . . . (the objects of a polycategory) 
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• a coproduct protocol: Xlie/ (^i '■ = {(^i '■ Xi \ i E 1} where each Xj 
is a protocol. If we suppose / = {!,... ,n}, we could represent this by the 
following tree: 




-'^i ■ ■ ■ 

• a product protocol: Hje J '■ ~ (^i '■ \ j ^ J) where each Yj is a 
protocol. Again, we could represent this by the following tree: 




Y-i ■ ■ ■ Yjn 

The Oj's and b/s are thought of as the events. An event, as introduced here, is 
not a formal object; for our purposes they may be thought of as names (or tags, 
constructors, etc.). 

Note that in specifying protocols we allow the index sets / and J to be empty; 
this gives two atomic protocols 

E. = {}=° -'"d !!, = ()=• 

Example 3.2.1 (Protocols) 

1. X ^ {a : {d : A},b : (e : B, f : C),c : {g : D,h : E}} 
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2. Y = {a : {c : A,d : B},b : {e : A, f : C}) 





where A, B, C, D, and E are protocols. 

Given a protocol X, we may form its dual protocol X* by flipping the prod- 
uct and coproduct structure and leaving the channel names and events alone. For 
example, the duals of our protocols above are: 

1. X* ^(a:(d:A*),b:{e: B*, f : C*}, c : (g : D*,h : E*)) 
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2. Y* = {a:{c: A*, d : B*),b : {e : A*, f : C*)} 




A* B* 



Notice that taking the dual of some protocol implies that the atoms in that 
protocol must have a dual in the underlying polycategory. In the "initial" EH-logic 
(the logic with no atoms) taking the dual of a dual gets us back to the original 
formula, i.e., (X*)* = X. This is true in the "pure" and "free" logic if and only if 
it is true for the atoms. 

What we now want to do is to assign protocols to channels. Channels, as men- 
tioned earlier, will be denoted with Greek letters. The notation a : X will denote 
the assignment of the protocol X to channel a. 

3.2.1 Protocol transitions 

A protocol may make a transition to one of its subprotocols (subformulas) by fol- 
lowing one of the edges from the "root" of the protocol. For example, given the 
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protocol 



d 




A B CD E 

the transitions a, 6, and c (respectively) lead to the following three subprotocols: 




A B CD E 



In our system, in order for a protocol to make a transition it needs be triggered 
by an event, of which there are two kinds: input events and output events. Given 
a channel a and an event a we use a[a\ to denote that the event a has been input 
on channel a and a[a\ to denote that the event a has been output on channel 
a (following, for example, the convention of the vr-calculus). Output events are 
thought of as being generated by the system and input events as being generated 
by the environment. There is an obvious analogy here with the game theoretic view 
of player and opponent moves. 

A process has two types of channels: domain channels and codomain channels. 
A protocol will have a different (actually dual) behaviour depending on which type 
of channel we associate it with. When a process is using a protocol X on an domain 
channel a, it will use the domain protocol of X, denoted dom(X). When a 
process is using X on a codomain channel j3, it will use the codomain protocol of 
X, denoted cod(X). 

The protocols dom(X) and cod(X) have as states all the subprotocols of X. We 
are then able to associate with each protocol X and channel a, two finite labeled 
trees (or labeled transition systems): one for dom(X) and one for cod(X). In a 
domain transition system a coproduct protocol may only respond to input events 
while a product protocol may only respond to output events. Dually, in a codomain 
transition system a coproduct protocol may only respond to output events while a 
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X 


dom(X) expects: 


cod(X) expects: 


{tti : Xi}i 


input 


output 


[tti : Xi)i 


output 


input 



Table 3.1: Expected transitions for a protocol X on a channel a 

product protocol may only respond to input events. We summarize these expected 
transitions in Table IXTl 

Example 3.2.2 (Protocol transitions) 

1. The transitions of 

dom(a : X) = a : {a : {d : A},b : {e : BJ : C),c : {g : D,h : E}} 
may be displayed as 




This protocol says that on a in the domain the system must wait for one of 
the events a, b, or c to be input from the environment. If a is received the 
system must to wait for the event d to be input, after which it will continue 
on with the protocol A. Alternatively, if a 6 is received the system enters an 
output state at which point it may output either e or /, and then continue 
with protocol B or C respectively. Lastly, if c is received it must then wait for 
more input, either g or h after which it will continue with D or E respectively. 

2. The transitions of 



cod(a : X) = a : {a : {d : A},b : (e : B, f : C),c : {g : D,h : E}} 
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may be displayed as 




B CD E 



Notice that we could turn input events into output events and output events 
into input events to obtain the same transition system as (1) above. 

3. The transitions of 

dom(Q; ■.Y)^a:{a:{c:A,d:B},h:{e:A,f:C}) 
may be displayed as 



o o 
a[c\ / \ a{d\ a[e\ / \ a\f\ 



B 



C 



4. The transitions of 



dom(Q : Z) = a : {a : {c : A,d : B,e : {}),h : C) 



may be displayed as 
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3.3 Proofs as processes 

A process in our system is a representation of a Sll-derivation. In the previous 
section we saw that on a domain channel, a coproduct protocol allows the environ- 
ment to input certain events to a process, and a product protocol allows a process to 
output certain events to the environment. Protocols on a codomain channel behave 
dually, i.e., on an codomain channel, a coproduct protocol allows a process to output 
certain events to the environment, and a product protocol allows the environment to 
input certain events to a process. Additionally, there are atomic protocols between 
which there can be an "atomic process" (i.e., an atomic map). 

This means that the kind of events a process may perform depend on the "type" 
of the process. The type of a process / is defined to be two strings of channel names 
(the domain channels and the codomain channels), and an assignment of protocols 
to those channels. This will be denoted 

ai: Xi, ...,«„ : X„ — ^ (3i : Yi, . . . , (3rn '■ Ym 

The channels to the left of the arrow are the domain channels, and the channels 
to the right of the arrow are codomain channels. In the following, F and A will be 
used to represent comma separated strings of channels and their assigned protocols, 
e.g., r = ai : Xi, . . . ,a„ : X„. 

In this section we introduce two term representations for Sll-derivations (pro- 
cesses). The first is a compact term calculus which will allow for easy manipulations 
of the derivations (i.e., cut reduction steps and permuting conversions). This repre- 
sentation will be used for proving the Church-Rosser property and cut-elimination. 
The second term representation uses a "programming language like" syntax which 
will be more representative of the "proofs as processes" . 

3.3.1 A term calculus representation 

The formation rules for this representation are given in Table The notation a{} 
will be used for the map from the empty sum on a domain channel a and /3() for 
the map to the empty product on a codomain channel f3. 
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a : A hi^ /3 : ^ (identity) 

{r.a:X, h;, A}, a {rh;, n :X,.A},ei 



r, a : flj : ^a{ai>-*fi}iei ^ ^ ^a{ai>-^fi)iei a : H Ui : Xi, A 
iei iei 



T,a : Y[ai : Xi ^tr[afc](/) ^ T ^-7?[afc](/) a : : ^i, T 

iei iei 

where k ^ 1,1 

rh/A,7:Z ^■.Z^V'hgA' 



r,r' h^;^. A, A' 



Table 3.2: EII term calculus formation rules 

If the domain and the codomain (i.e., both sides of the turnstile) consist of the 
same single atom A (e.g., A\- A), the identity rule asserts that the process may 
output the atomic identity map 1a '■ A ^ A (from the underlying polycategory) 
and then end. The axiom rule asserts that if a process is sitting between atoms F 
in the domain and A in the codomain, and / : F — > A is an atomic map, then the 
process may output / and then end. 

Given a process that is interacting on a channel a in an input state (the protocol 
assigned to a is in a state in which input is allowed: a coproduct protocol in the 
domain or a product protocol in the codomain), the cotuple and tuple rules assert 
that the process must be prepared to accept any one of the possible input events that 
the protocol will allow on a, in this case any of the Oj's, for i & I. After receiving 
one of the input events Oj the process will then continue on with its subprocess fi 
(where, in the cotuple case, the type of fi is F, ck : — > A, and in the tuple case. 

Given a process that is interacting on a channel a in an output state, the pro- 
jection and injection rules assert that the process may output one of the specified 
events, in this case, one of the Oj's, for i & I, and then continue on with its subprocess 
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/ of type T , a : Xi ^ A or T ^ a : Xi, A respectively. 

Example 3.3.1 (Term calculus representation) 

1. Suppose that the following are atomic maps 



i:A,E^G,I 



j:B,E^G,J 



k:C,F ^HJ l:D,F^H,K 
and consider the assignment of protocols to channels: 



a : 



\ 



d 




B 


C 








if 




\E 



7 



o 

a'/\b' 



\ 



6 : 



G H 



o 



V J k/ 

A process between a and {3 in the domain and 7 and 5 in the codomain is: 



a < 



rf'^ «[c^](t[e'](j)) 
d I— s> t^[e](A;) 



This process must first wait for the environment to input either an the event a 
or the event h on ct; say it receives the event a. The process will then proceed 
to output first g on (3, and then a' on 7, after which it will wait for either a d 
or a d' to be input on 5. Suppose d is input, then it will output c on a and 
finish by outputting the atomic map i. 

This, of course, is just describing one possible interaction that could happen. 
The environment could have first input 6 on a, in which case a different inter- 
action would have occurred. 
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This term represents the derivation of the sequent in the third example of 
Example 12.1.11 annotated in the following way: 

a:{a : {c : A,d : B),b : {e : CJ : D)}, (3 : {g : E,h : F) 

h 7 : {a' : G, 6' : H}, 6 : {c' : I, d! : {e' : J, /' : K}) 

2. Consider the following annotated version Example I2.1.ir 2): 



a: Ah (3: A a : B h (3 : B 



a:{e:A,f:B)h(3:A a : {e : A, f : B) h f3 : B 



a:{e:A,f:B)hP:{g:A,h:B) a : C h (3 : C 



a : {e : A, f : B) h (3 : {c : {g : A,h : B),d : C} a : C h P : {c : {A,B),d : C} 
a : {a : {e : AJ : B),b : C} h (3 : {c : {g : A,h : B),d : C} 

The term corresponding to this sequent derivation is 

?M](lc) 

3.3.2 Cut-elimination rewrites 

If a domain channel of a process /, and a codomain channel of a process g, share 
a common protocol then these processes may be "plugged" (or composed) together 
on these channels to form a new process. For example, the two processes 

a:X — >-f:Z and 'y:Z—^(3:Y 
f a 

share the protocol Z in common where Z is in the codomain of / and in the domain 
of g, and thus, / and g may be "plugged" together on 7 to form a new process 

a : X > (3 : Y 

In this new process, any output event on 7 from / becomes an input event on 
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7 for g, and vise versa. This means that the environment may no longer input to 
either 7 as it is hidden (in the same sense as in the vr-calculus). 

In general, processes have many domain and codomain channels, e.g., 

r — > A, 7 : Z and 7 : Z, T' ^ A' 

/ 9 

Plugging these processes together on 7 results in 

r, r' > A, A' 

f;-(9 

where F and V are the domain channels and A and A' are the codomain channels 
for this new process. 

Notice that plugging processes together can only occur when they have exactly 
one channel name in common: after this plugging process all the channel names 
must be distinct. This means that channels may have to be renamed in order to 
compose. We shall use (simultaneous) channel name substitution to indicate this 
renaming process 

f[a[/ai,...,a'^/an\ 
where ai, . . . , must be distinct channel names, as must a[, . . . , a'^, and 

(channels (/)\{q;i, . . . , (1 {a[, . . . , a'J ^ $ 

so that the new channel names are distinct from the old channel names which are 
not replaced. 

Example 3.3.2 (Renaming channels) 

1. In order to compose 

a:W,(3:X\-f-f:Y,6:Z and 6 : Z,a :W' \-g /3 : X',-f 
on 6 we must first rename a, /?, and 7 in / or g(. Suppose we rename in g: 
g[e/a, = 6 : Z, e : W rj : X' , : Y' 
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The result of composing / and the renamed g on 6 is then 
a:W, (3 : X, e:W' hf,^g 7 : r]:X', 9 

2. Suppose we wish to compose the following two processes 

a:Xhfl3:Z and 7 : Z 5 : F 

using (3 : Z from / and 7 : Z from g. In this case, we may substitute either (3 
for 7, 7 for /3, or a fresh channel name (a channel name which does not occur 
in either / or g) for both [3 and 7. Suppose we substitute 7 for P in f which 
yields a : X 7 : Z. Now / and g may be composed on 7: 

« : X hf,^, S : Y 

In general we may end up renaming the channels on which we want to compose to 
have the same "name" and the rest of the channels to be distinct from one another. 

To simplify the exposition, in the following we will simply assume that the chan- 
nel names of processes are distinct unless otherwise specified. For example, given 
the following two processes 

r — ^ A, 7 : X and 7 : X, T' — ^ A' 

/ a 

it will be assumed that the only channel name / and g have in common is 7. 

It should now be obvious that plugging together two processes is exactly an 
application of the cut rule. The dynamics of cut-elimination then can be seen as 
the way in which two processes communicate. 

The cut-elimination reductions and the permuting conversions are summarized 
in Table 13.31 (Typing information has been omitted as it can be inferred from 
the terms, and in any case these have been displayed as sequent derivations in the 
previous chapter.) Note that apart from (19) and (22), these come in dual pairs, so 
there are six rewrites, eight conversions and their duals, and two other conversions 
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(which are self-dual): essentially 16 rewrites. 

Recall that we allow the index sets / and J to be empty, except where the 
projection and injection rules are involved (the rules (5), (7), (11), (15), (17), (20), 
(22) and their duals); in these cases, since reference is made to an element k or /, it 
does not make sense for the corresponding index set to be empty. In (15) and (17) 
(and their duals) the index set J for the named element k must not be empty, but 
the other index set / may be. In (13), (14), and (19) either (or both or neither) 
index set may be empty. An explicit treatment of these nuUary cases may be found 
in Section EiH 

Example 3.3.3 (Process communication (composition)) Suppose that 

• X = a : {a ■ {c ■ A,d ■ B),b : {e : AJ : C)} 

• Y = p ■ {a: B,b:C} 

• Z = -f : {a: A,b: {c: B,d: C}) 

are protocols and consider the following situation: 



a : X 



a < 



a ^[c](1a) 

feK^ 7^[c](tr[d](lB)) 

a ^ *Q [e](ls) 

b^^[d]{1^[f]{lc)) 



7 : Z -y : Z 



/3W(ls) 



■I3:Y 



Composing these two processes on 7 : Z gives 



a M [c](1a) 

a h-> ^[e](lB) 

7?[d]{tF[/](lc)) 



/3[a](lB) 
d^l3[b]{lc) 



■ "W(1a) 

^[e](ls) 
^[d]{tF[/](lc)) 



;7 *7 M{7 



/3H(lfl) 



(by (3)) 



a ^ ^[c]{'a[d]{lB));i-y 
6K^^[d]{^[/](lc))w7 



/3H{lfl) 
l'M(lc) 

l'H(is) 
?M(ic) 



(by (12)) 
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(1) /;7i 

(2) l-nf 

(3) a{ai ^ fiji]^ g 

(4) f-nP{bi^gi)i 

(5) 'a[ak]{fy,jg 

(6) 

(7) ^K](/);7fi' 

(8) fh^ihKg) 

(9) a{ai^fi)i]^g 
(10) 

(11) 7 [afc](/);7 7{ai 

(12) 7(ai ^ /*)i;7'^[«fc](^) 

(13) a{ai i-^ fij}j}t 

(14) a{ai^ P{bj ^ fij)j)i 

(15) Q;{a,^/[6fe](/,)}i 

(16) "^[afc](/9(6i ^ s-i),) 

(17) a{a,H.?[6fc](/,)}, 

(18) -^[akWi^9i)i) 

(19) Q;{ai 1-^ /3(6j 1-^ fij)j}i 

(20) 7?K](?[6z](/)) 

(21) a[ak]{^[bi]{f)) 

(22) ^K](>[6,](/)) 



/ 

/ 

a{ai ^ /inS'li 
/5(&i ^ fh9i)i 
"«K](/;7 5-) 

^M(/;7^) 
^[«fc](/;7 5') 

Oi{ai ^ fi]^g)i 
(^{bi ^ fh9i}i 

fh9k 

fk',-y 9 

P{bj ^ a{ai ^-> fij}i}j 
P{bj ^ a{ai^ fij)i)j 

P [bk]ia{ai ^ fi}i) 

(3{bi '^[ak\{gi))i 

P [bk]{a{ai t-^ fi}i) 
(3{bi ^ 'a[ak]{gi))i 
P{bj ^ a{ai ^ fij}i)j 

^[bimakKf)) 
>[fe,](^K](/)) 



Table 3.3: EII conversion rules 
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aK^tF[d](lB)w7(/3M(lfl)) 
6^ "[/]{lc);7 7(?[b](lc)) 



(by (11)) 




aH^ti[d](ls;^7{/3[a](ls))) 
b^^[f]{lCnl0mic))) 



(by (7)) 




a^^[a!](/3[a]{ls)) 
6H^^r[/](?[fe]{lc)) 



(by (2)) 



It is easy to see the resulting process is indeed a process between a : X and 



3.3.3 A "programming language" representation 

In this section we introduce the second of our term representations for derivations 
in EH: the "programming language" representation. This representation was sug- 
gested to Robin Cockett and the author by Robert Seely. 

The term formation rules for this representation are given in Table 13 .41 Notice 
that the cut rule in this representation does not require that the channel names be 
the same, however, channels may still have to be renamed (substituted) after cutting 
two processes together to keep the channel names distinct. It is also worth noting 
that this representation does not differentiate between input/output on a domain 
channel and input/output on a codomain channel; the typing disambiguates between 
the two. 

Example 3.3.4 (Programming language representation) 

1. The following is the programming language representation of the first example 
from Example 13.3.11 

input on a of 



a I— s> output g on 13 then 
output a' on 7 then 
input on 5 of 
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a: A^i^ j3 : A 

{r,a:X, hj^ A},e/ {r h/, a : X^, Aj^e/ 



r, a : ^ : Xi Hj^JJp^^ on a of | ai^fi ^ r l~j^^Jp^^ on « of | ai}-*fi 01 : Y\ O-i '■ A 

is/ iG/ iel ie/ 

r,a:Xfch/A Thfa:Xk,T 



r, Q . flj . -X^j l~output aj; on a then / ^ ^output aj^ on a then / O! . Q.j . X^, Y 

i£l i£l 

where k ^ 1 ,1 ^ ^ 
r A, a : Z /3 : Z, r' hg A' 

-T; r l~p]^^g a in / to /3 in g ^) ^ 



Table 3.4: SII programming language term formation rules 



I d I— > output c on a then i 
I d! ^ output d on a then j 

output e' on 5 then j 
I 6 ^ output h on j3 then 
output b' on 7 then 
input on 6 of 

I c' H-i> output e on a; then 
I d' ^ output / on a then / 

output /' on 6 then / 

2. This is the second example from Example 13 .3. II 

input on a of 

I a ^— s> output c on /? then 
input on (3 of 

I g output e on a then 1a 
I h output / on a then 1b 
I b ^— > output d on (3 then Iq 
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As this representation is self-dual, many of the cut-elimination reductions and 
permuting conversions are identical. Therefore, only the unique rewrites are pre- 
sented; the rewrites which are identical will be indicated in brackets, [_] (the dual 
rewrites are left out). 



(1) plug 7 in / to 5 in 1 ^ / 

(3), [(9)] plug 7 in (input on a of |j i— > /j) to 5 in (7 

=^ input on a of |j 1—* (plug 7 in /j to b in g) 

(5), [(7)] plug 7 in (output on a then /) to 5 in (7 

=^ output Ofc on a then (plug 7 in / to 5 in g) 

(11) plug 7 in (output afc on 7 then /) 
to 7 in (input on 7 of |j 1-^ gi) 
plug 7 in / to 7 in 51^ 

(13), [(19)] input on a of \i ai ^ (input on (3 of |j 6j ^ fij) 

input on j3 of \j bj (input on a of |j fij) 



(15), [(17)] input on a of |j 1— (output feyt on /5 then /j) 

1=1 output 6fc on j3 then (input on a of \i \—>- fi 

(20), [(22)] output afc on a then (output 6^ on (3 then /j) 

output bk on /9 then (output on a then /j) 



The following example of cut-elimination is the "programming language repre- 
sentation" of Example 13.3.31 

• We begin with the following process. 

plug 7 in 

input on a of 

I a I— s> input on 7 of 

I a output c on q; then 1^ 



I b H- >■ output c on 7 then 

output d on a then 1b 
I b input on 7 of 

I a 1-^ output e on a then 1^ 
I b H- >■ output (i on 7 then 

output / on a then Ic 

to 7 in 

output 6 on 7 then 
input on 7 of 

I c (-^ output a on /3 then 1 b 
I (i I— > output b on (3 then Ic 

Applying rewrite (3) yields. 

input on a of 

I a ^ plug 7 in 

input on 7 of 

I a I— > output c on q; then 1^ 
I 6 I— > output c on 7 then 

output d on a then 1b 

to 7 in 

output 6 on 7 then 
input on 7 of 

I c I— > output a on (5 then 1 
I d I— > output b on (5 then 1 

I 6 I— > plug 7 in 

input on 7 of 

I a I— > output e on q; then 1b 
I b I— > output d on 7 then 
output f on a then 

to 7 in 

output 6 on 7 then 
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input on 7 of 

I c 1-^ output a on j3 then 1 b 
I d H- > output b on (3 then Ic 

To this result, applying rewrite (12) (the dual of (11)) yields. 

input on a of 

I a I— > plug 7 in 

output c on 7 then 

output d on a then 1b 
to 7 in 

input on 7 of 

I c I— > output a on P then 1 b 
I d I— > output b on (3 then Ic 
I 6 I— > plug 7 in 

output d on 7 then 

output f on a then Iq 
to 7 in 

input on 7 of 

I c I— > output a on P then 1 b 
I d I— > output b on (3 then Ic 

Rewrite (11). 

input on a of 

I a 1-^ plug 7 in 

output d on a then 1^ 
to 7 in 

output a on (5 then 1b 
I 6 1-^ plug 7 in 

output f on a then Ic 
to 7 in 

output b on (3 then 1^ 
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• Rewrite (7). 

input on a of 

I a output d otl a then 
plug 7 in 1b 
to 7 in 

output a on /3 then 1^ 
I h I— s> output / on q; then 
plug 7 in Ic 
to 7 in 

output 6 on /3 then 1^ 

• And finally, by rewrite (2). 

input on a of 

I a (-^ output (i on a then 

output a on /3 then 1^ 
I 6 1-^ output / on a then 

output b on j3 then Ic 

Although this syntax gives a clear intuition into processes, the reader will agree 
that it is quite verbose. Thus, in what follows, we shall favor the compact term 
calculus introduced in Section IB.H. II 

3.4 The additive units 

The way in which the cut-elimination process handles the reductions and permuting 
conversions when the index set / = is quite subtle. To clarify this, in this section 
we make these special cases explicit. In the following the abbreviations = and 
YI0 = 1 will be used. The nuUary versions of the cotuple and tuple rules are: 

-r- (cotuple) ^ . . (tuple) 
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The notation here is ambiguous as one cannot derive the context from the terms. 
To correct this we shall write the terms above as Q;{}ri-A and POrhA respectively. 

There are four reductions that are relevant to this setting, corresponding to the 
rewrites (3), (4), (9), and (10) where J = 0. Given terms / : F h A,7 : X and 
: 7 : X, r' h A' we have the following reductions. 

(3) a;{}rhA,7:X ^fi' =^ tt{}r,r'hA,A' 

(4) / 'n P{)r.x,r'hA' =^ /5()r,r'hA,A' 
(9) a;()ri-A,7:X ^-y 9 =^ a()r,r'i-A,A' 

(10) / 'j'y P{}'y:x,r'hA' =^ P{}r,r'\-A,A' 

In addition, there are 13 permuting conversions, corresponding to the cases (15) 
and (17) (and their duals), three variants of (13) (corresponding to the cases when 
only / = 0, only J = 0, and both / = J = 0) (and their duals), and three variants 
of (19). Fortunately, they are all very similar, so we present only (15) and the three 
variants of (19). Here we drop the typing on the term and indicate it in the brackets. 

(15) a{} ^ ?N(a{}) {r,a:0h(3:^Y,,A) 

(19) a{a,^(3{)}^ ^ (F, a : ^ X, h /3 : 1, A) 

(19) a{} ^ (r,a: Oh/5 A) 

(19) a{} ^ (3{) (F,a : h/? : 1,A) 

3.5 Proof of the Church-Rosser property 

In this section we present a proof of the Church-Rosser property for SFE-morphisms. 
The proof presented here follows very closely the proof in |CS01j . extended to the 
"poly" case. 

We wish to show that given any two Sll-morphisms related by a series of reduc- 
tions and permuting conversions 
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there is an alternative way of arranging the reductions and permuting conversions 
so that ti and t„ can be reduced to terms which are related by the permuting 
conversions alone. That is, we wish to show that there is a convergence of the 
following form: 

\ / 

When the rewriting system terminates (in the appropriate sense) this allows 
the decision procedure for the equality of Sll-terms to be reduced to the decision 
procedure for the permuting conversions (see Section 13. 7|) . In order to test the 
equality of two terms, one can rewrite both terms into a reduced form (one from 
which there are no further reductions), and these will be equal if and only if the 
two reduced forms are equivalent through the permuting conversions alone. In the 
current situation the reduction process is the cut-elimination procedure. In this 
section we will show that this is a terminating procedure. 

We begin with a couple of definitions. The first is the multiset ordering of 
Dershowitz and Manna |DM79j . Let {S-,>-) be a partially ordered set, and let 
M(5) denote the multisets (or bags) over S. For M,N e M(^), M > N (">" is 
called the multiset (or bag) ordering), if there are multisets X,Y ^ M(5'), where 
7^ X C M, such that 

N = (M\X) U Y and {Wy G Y){3x E X) x y y 

where U here is the multiset union. 
For example, 



[3] > [2,2,1,1], [4,3] > [4], [3, 2] > [3,1] 
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Recall from jDM79j that if {S, >~) is a total order (linear order) then M(S') is 
a total order. To see this consider M,N G M(S'). To determine whether M > N 
sort the elements of both M and and then compare the two sorted sequences 
lexicographically. 

Following |("S01j we say a rewrite system is locally confluent modulo equa- 
tions if any (one step) divergence of the following form 

^0 ^0 

/ \ - / \ 

ti t2 ti t2 

(where denotes a reduction and "l==l" an equation) has a convergence, re- 

spectively, of the form 

ti t2 

h t2 \ 

or A t2 

t' 

where the new arrow "i indicates either an equality or a reduction in the 

indicated direction. 

Proposition 3.5.1 Suppose {N,TZ,S) is a rewriting system with the equations equ- 
ipped with a well-ordered measure on the rewrite arrows such that the measure of the 
divergences is strictly greater than the measure of the convergences then the system 
is confluent modulo equations if and only if it is locally confluent modulo equations. 

Proof. If the system is confluent modulo equations it is certainly locally confluent 
modulo equations. Conversely suppose we have a chain of reductions, equations, 
and expansions. We may associate with it the bag of measures of the arrows of the 
sequence. 

The idea will be to show that replacing any local divergence in this chain by 
a local confluence will result in a new chain whose bag measure is strictly smaller. 
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However, this can be seen by inspection as we are removing the arrows associated 
with the divergence and replacing them with the arrows associated with the conver- 
gence. The measure on the arrows associated with the divergence is strictly greater 
then that of the measure on the arrows associated with the convergence. 

Thus, each rewriting reduces the measure and, therefore, any sequence of rewrit- 
ing on such a chain must terminate. However, it can only terminate when there 
are no local divergences to resolve. This then implies that the end result must be a 
confluence modulo equations. ■ 

3.5.1 Resolving critical pairs locally 

The proof of the Church- Rosser property involves examining all the possible critical 
pairs involving reductions or reductions and conversions, and showing that they are 
all of the form shown above and that they may be resolved in the way shown above. 
It then must be shown that there is some measure on the arrows which decreases 
when replacing a divergence with a convergences. This will then suffice to show that 
our system is locally confluent modulo equations, so that by Proposition 13.5.11 it 
is confluent modulo equations. The rewrites (1)-(12) are the "reductions" and the 
permuting conversions (13)-(22) are the "equations". 

The resolutions of the critical pairs will be presented as reduction diagrams. We 
begin with the rewrites involving the empty cotuple and empty tuple rules. 

• The resolution of the critical pair (l)-(3) (dually (2)-(4)) is indicated by the 
following reduction diagram. 

a{};7i=||=^"{} 

The critical pair (l)-(9) is handled similarly. 

• There are three cases for the resolution of the critical pair (3)-(4): only / = 0, 
only J = 0, both / = J = 0. The first two cases correspond respectively to 
the following reductions diagrams: 
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a{};^(3{bj ^ gj)j a{ai ^ fi};^ f3{) 




a{ } P{bj ^ a{ };^gj)j a{ai ^ fi;^P{ )} /3( ) 




while the reduction diagram for the third case is: 



(3) y \ (4) 



The rest of the critical pairs involving reductions from the empty cotuple and 
empty tuple rules will have similar reductions. So, we now look at the cases 
where there is a critical pair involving a reduction and a conversion. 

There are three cases for the resolution of the critical pair (3)- (13) (dually 
(4)-(14): only 7 = 0, only J = 0, both 7 = J = 0. The first two are dual 
so we present one the first and third case. In the first case there are two 
subcases. There correspond to whether the apex (of the reduction diagram) 
starts with a{ } or P{bj i-^ a{ }}j. The reduction diagrams for these subcases 
are as follows: 
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(3) \. (13) 





P{bj ^ (^{}}j-ng 

(3) y \ (13) 



(13) 

m ^ «{ }}, 



/3{(3)} 



In the third case we have 





(3{bj ^ a{ g (3{bj ^ a{ };^ g}j a{ };^ g 



/3{(3)} 



/3{(3)} 



(3) 



^ a{ hj 9}j P{bj ^ a{ }}j N 



(13) 



M a{} 



a{ };^g 
(3) y V (13) 




a{} 




P{}h9 





(13) ^ ^ (3) 
/?{} 

The rest of the critical pairs involving reductions and critical pairs from the 
empty cotuple and empty tuple rules where neither operate on the cut channel 
will have similar reductions. The case where the terms operate on the cut 
channel must now be looked at. 



The resolution of the critical pair (11)-(13) (dually (12)-(14)) is indicated by 
the following reduction diagram: 
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^[ak]{f)hl{ai ^ I3{ }} 
(11) X \s i;(i3) 





fnf^U 7K](/);,/3{} 





(10) \^ (10) 

/3{} 

The rest of the critical pairs involving reductions and critical pairs from the 
empty cotuple and empty tuple rules where they operate on the cut channel 
will have similar reductions. 

We now move on to examining the cases for non-empty index sets. In this 
case each of the reduction diagrams has one of five shapes. Due to the number of 
critical pairs, we limit ourselves to presenting one of each shape here, and the rest 
in Appendix 1X1 

• The resolution of the critical pair (l)-(3) (dually (2)-(4)) is indicated by the 
following reduction diagram. 

a{ai fiji]^ 1 





a{ai f,}i ^===== a{ai t-^ fi,^ l}i 

The resolution of the critical pair (3)- (6) (dually (4)- (5)) is indicated by the 
following reduction diagram. 
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a{ai ^ fi]^ (5 [h]{g)}i 

aim 



(5 [h]{a{ai ^ fiju^g) 

^((3)) 



a{ai P mifu-y g)}i ^ 



(17) 



=1 p [b]{a{ai fi]^g}i) 



• The resolution of the critical pair (5)- (18) (dually (6)- (17)), where /3 7^ 7, is 
indicated by the following reduction diagram. 



(J>)^^^ ^^18);l 





a({9)) 



(18) 



I3{hi ^ a [ak]{fi))i]^ g 

(9) 

P{bi ^ 'a[ak]{fi);jg)i 

/3((5)) 

P{bi ^ 'a[ak\{fi;^g))i 



• The resolution of the critical pair (7)-(16) (dually (8)-(15)), where we start 
with the morphism a"[a](7(6i 1-^ fi)i)','y P [c]{g), is indicated by the following 
reduction diagram. 
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^[a](7(6i ^ fi)i]^ 13 [c]{g)) 



«({8)) 




(8) 

?((16);1) 

/3[c](^[a](7(6i ^ fi)i)hg) 

?((7)) 



(22) 



H /3 [c] ( a [afe] (7(6^ ^ /i)^;^ 



The resolution of the critical pair (11)-(13) (dually (12)-(13)) is indicated by 
the following reduction diagram. 



'^[ak]{f)-nl{ai ^ a{bj ^ 9ij}j}i 
(11)..^^ ^^^i;{i3) 




fh ^ 9kj}j 

(10) 




a{(ll)} 



(10) 



Notice that each of the five shapes of reduction diagram fits the required form to 
show local confluence modulo equations, and hence, confluence modulo equations. 

The next step in proving Church-Rosser is to show that the reduction steps 
terminate. This is done by associating a bag of cut costs with a sequent derivation 
and showing that each reduction strictly reduces the bag while each equality leaves 
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it stationary. This then will imply that the reductions terminate. The construction 
of this cost criterion is our next task. 

3.6 The cut measure on Ull-morphisms 

The purpose of this section is to show that the cut elimination procedure (defined 
in Section 1221) terminates. To this end we define a bag of cut heights and show that 
the bag is strictly reduced on each of the cut elimination rewrites. 
We begin by defining the height of a term as: 

• hgt[a] = 1 when a is an atomic map (or an identity) 

• hgt[a{ai ^^ fi}iei] = 1 + max{hgt[/i] \ i e 1} 

• hgt[«K]-/] = i + hgt[/] 

. hgt[/;(?] = hgt[/]+hgt[(7] 

The height of a cut is defined simply as its height, e.g., cuthgt[/; g] = hgt[/; g]. 
Define a function A : T — > bag(N) which takes a term to its bag of cut heights. 

Proposition 3.6.1 

(i) // ti^^t2 then A(ti) > A(t2). 

(ii) // ti I ^ I ^2 (ind (a) is an interchange which does not involve the nullary 
cotuple or tuple then A(ti) = A(t2)- 

Proof. We begin with the proof of part (i). There are three properties that must 
be shown: hgt[ti] > hgt[t2], the height of each non-principal cut does not increase, 
and the height of any cut produced from the principal cut is strictly less than the 
height of the principal cut. 

A simple examination of the rewrites will confirm that if ti =^ t2 then hgt[ti] > 
hgt[t2]: 



(1) (and dually (2)): 



hgt[/;l]=hgt[/] + hgt[l]>hgt[/] 



(3) (and similarly (4), (9), and (10)): 



ligt[Q;{ai 1-^ fi}ieih9] = hgt[Q;{ai i-^ fi}iei] + ^gt[g] 

= 1 + max{ligt[/i] \ iel} + hgt[g] 
= 1 + max{hgt[/i] + hgt[g] \ i e 1} 
= hgt[a{ai ^ Ujgji&i] 



If the index set / is empty we have 



hgtK};^^] =hgtK }]+hgt[^] 
- 1 + hgt[^] 

>hgt[a{}] 



(5) (and similarly (6), (7), and (8)): 



hgt[-^[ak]{f);^g] = hgt[7^[afe](/)] + hgt[^] 

= l + hgt[/]+hgt[5r] 

= hgt[^[afe](/;^^)] 



(11) (and dually (12)): 

hgt[o^[afe](/);^7{ai 



gi}iei] = hgt[ o^[ajfc](/)] + hgt[7{ai i-^ gi}i 
= 1 + hgt[/] + 1 + max{hgt[^i] I i 

> hgt[/] + max{hgt[5fi] \ i e 1} 

>hgt[/]+hgtbfc] 

= hgt[/;^^fc] 
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Moreover, this implies that cuts below and cuts above the redex will not increase 
their cut height on a rewriting. 

Finally, consider the principal cut of the reduction. Rewrite (1) (dually (2)) 
removes a cut and so strictly reduces the bag of cut heights. It is an easy observation 
that (5), (7), and (11) (and their duals) each replace a cut with one of lesser height, 
and that (3) (and its dual) replace a cut with zero or more cuts of lesser height. 
Thus applying any of the rewrites strictly reduces the bag. 

We know prove part (ii). For the equations (13) through (19) we assume that 
the index sets are non-empty. This then implies that the permuting conversions are 
all of the form a{P{f j) and thus 

hgt[a(/5(/))] = 1 + hgt[/3(/)] = 1 + 1 + hgt[/] = hgt[/5(a(/))] 

which proves that the height does not change across these (non-empty tuple and 
cotuple) interchanges. ■ 

To see that the height is not invariant across the empty cotuple (dually the tuple) 
rule recall one of the nuUary versions of the rewrite (13): 

«{ } ^ P{bj ^ a{ }h 

The height on the left-hand side is one, while on the right-hand side the height is 
two. 

3.6.1 The measure on the rewriting arrows 

We define a measure A : A — > bag(N) on the rewriting arrows as follows: 

• if ti^=^t2 then A(x) = min{A(ii), A{t2)} 

• if ti\=^^t2 then A(a;) = max{A(ti), A(t2)} 

where A{t) is the bag of cut heights of t. 

A quick examination of the reduction diagrams now confirms that this measure 
will decrease when we replace a divergence with a convergence. 
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This completes the proof of the proposition: 

Proposition 3.6.2 EHa under the rewrites (1)-(12) is confluent modulo the equa- 
tions (13)-(22). 

3.7 Deciding the Sll-conversions 

Prom the above, it is clear that given any two derivations, deciding their equivalence 
reduces to deciding the equivalence of cut-free proofs. Of course, this means that 
any atomic cuts (cuts involving atomic formula) must be replaced with the atomic 
sequent given by the appropriate composition in the generating category A. Thus, 
the decision procedure is a relative one depending on the decision procedure for A. 

The decision procedure presented for the Ell-conversions is graphically-inspired. 
It operates on pairs of terms representing cut-free derivations of a given sequent. 
One of the terms is used as a "template" for transforming the other term into one 
of the same shape. The idea is to force the second term to start with the same proof 
rule as the template. If this is possible, then proceed inductively with the subterms, 
and otherwise, if it is not possible, the two terms must then not be equivalent. 
By using one of the terms in this manner one provides an order to search for the 
conversions which make the two terms the same. 

This can be described using the term calculus or even the derivations themselves, 
but is clearer with a simple graphical representation of the terms. With a term we 
can associate a term-graph, whose nodes represent the subterms of the term. Tupling 
and cotupling will be denoted with a triangle decorated with the channel name it 
operates on, which has "output" edges for each component of the (co)tuple. These 
output edges will be decorated with the event associated with each component. 
The typing of the term will indicate which rule (tuple or cotuple) each triangle 
represents. Injections and projections will be denoted by boxes decorated with the 
channel name it operates on. The output edge of an injection/projection will be 
decorated by the event in which it outputs. Similarly here, the typing of the term 
determines whether a box represents an injection or a projection. Atomic sequents 
will be represented by circular nodes containing the atomic term, as will identities 
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on atomic formulas. 

With these conventions the permuting conversions may be represented by the 
following graph equivalences (where a ^ (3). 

• Cotuple-cotuple, cotuple-tuple, tuple-tuple 







'^ll ^Ira ^ml tmn 



tu tml tin tmn 



Cotuple-injection, cotuple-projection, tuple-injection, tuple-projection 



u ■■■ m 



Injection-injection, injection-projection, projection-projection 



a 



a 



To illustrate the graphical representation, the third derivation in Example 12.1.11 
can be represented by the following graph. Note that the graph is quite a direct 
representation of the derivation tree. 
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An equivalent derivation is given as follows 



A, E\-i G, I 
A, E h G + H, I 
A, ExFhG + H, I C, ExFhG + H, I 
AxB,ExF h G + H, I CxD, 



C, F hfc ff, / 
C, F h G + H, 



ExF h G+H, J 



B, F \-j G, J 
B, F h G, J + K 
B, F h G + H, J + K 

, E X F h G + H, J + K D, E X F h G + H, J - 



(A X B) + (C X D), E X F h G + H, I 



Ax 



D, F hi H, K 

D, F h H, J + K 
D, F h G + H, J + K 

K 

,ExF h- G + H, J+K CxD,ExFhG + H,J+K 
(Ax B) + (C : 



(A X B) + (C X D), E X F h G + H, I x (J + K) 

which is given (in its annotated version) by the graph below: 



: D), E X F h G + H, J + K 
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We shall illustrate the decision procedure with this example. Take the first graph 
as a template. The first step in the procedure is to see if the second graph can start 
the same way as the first graph. This means we have to move an a-triangle up to the 
topmost level. This involves searching through the second graph until an a-triangle 
is found that can be moved upwards in the necessary manner. In this case there is 
one at the second level. Moving it up gives the graph on the left below. (The labels 
have been removed as this will not cause any ambiguity here, but in any case they 
may be inferred from the previous graph.) 




Moving down a level we inductively repeat the process for all subterms at the 
second level nodes: the next step is to pull up the /5-boxes on the left path and right 
path. This is done by interchanging the a-boxes and /3-boxes in all the paths and 
then flipping the 5-triangles and (?-boxes, which results in the graph on the right 
above. The last step would be to bring the 7-boxes up to the third level. This is 
done by interchanging the a-boxes and the 7-boxes in all the paths and then flipping 
the (5-triangles and 7-boxes; this produces the required graph (i.e., we were able to 
transform the second graph into the "template" graph), and so completes the proof 
that the two original derivations are equivalent. In general, the decision procedure 
will proceed in this recursive manner. 
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3.7.1 The details and proof of the decision procedure 

A term is a-inert if it does not contain as subterms a"[a](t), "a'[a](i), a{ai i— > tiji^j, 
or a{ai i— > ti)i^i. Clearly if t is a-inert then there is no equality involving a which 
applies to it. 

Let Cq be the constructors '«"[•](_), "«[•](_), a{J}i^i, or a{-)i^i. We shall say a 
term starts with constructor in case the first constructor in the term is C^. 
The Ca-prefix of a term t, denoted prefix^^^ [t] , is defined as follows. 

• If t starts with Ca then prefiX(^^ [t] = * (where * is the "anonymous" variable, 
i.e., a distinct variable which has not been used before and will not be used 
again) . 

• lit does not start with Ca then 

- if t - then prefix^J^[6](f)] - ?[6](prefixcjf]). 

- if t = ~pmt') then prefixcj/[6](i')] = /[^Kprefix^Ji']). 

— ii t — P{bi I— > ti}i^i then 

W(i^^cjP{h ^ ti}i^j] = P{bi ^ prefiX(^^[ii]}je7. 

— ii t — (5{hi I— > ti)i^i then 

PrefiX(^^[/3(6j 1-^ ti)i^i] = I3{hi ^ prefixc;^[ij])je_f. 

The Ca-frontier of a term with a C^-prefix is those first occurrences across the 
term of the constructor Ca- 

Lemma 3.7.1 Suppose a term t starts with constructor Ca- Then in any series of 
equalities 

the Ca-prefix of each ti is a-inert- 
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Proof. Suppose that t = ^[a]{t') and prefix<^y [tj] = w, where w is a-inert. Either 
ti 1=1 tj+i is an apphcation of an equahty at the tr[-](_)-frontier of the inert term 
w or it is not. If it is beyond the frontier then prefix^ ^.^^[tj] = prefix<^j.](-_-)[tj+i] and 
if it is before the frontier then it simple shuffles the a-inert prefix. If it is on the 
frontier either it moves structure out of the inert term by shrinking the frontier (in 
which case prefix<^[.](-_-)[tj+i] is certainly still inert (if smaller)), or it moves structure 
into the prefix by expanding the frontier. However, only a-inert structure can be 
moved over tr[-](_), so again prefix<^j.](-_-)[tj+i] is a-inert. ■ 

In a series of equalities beginning with a term which starts with we may 
distinguish the steps which increase the C^-inert prefix, \ > tj+i , those which 
decrease the C^-inert prefix, < I tj+i , and those which do not afi^ect the Ca-inert 
prefix, ti I I ti+i . 

Lemma 3.7.2 

ti I ^> ti+i I ^ I ti+2 

can be rearranged as 

ti^J=^t'i+l^^ti+2 

Proof. The redex of y cannot be within the inert prefix, nor by assumption is it 
on the frontier, and thus, it must be independent of x (on the frontier), and thus, 
the equalities can be rearranged. ■ 

This means that we can rearrange the steps in any proof of equality so that no 
CK-inert prefix-increasing step happens before a step which does not affect the inert 
prefix. However, we are not able to move these increasing steps past an inert prefix- 
decreasing step, but as a decreasing step is only possible if there has already been 
the corresponding (reverse) increasing step, this decreasing step may be cancelled 
with the increasing step. Thus, we may conclude the following. 

Lemma 3.7.3 In any series of steps 

t\=r^ti^^t2<^t3 



the decreasing step y can be cancelled with its corresponding increasing step. 
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The following proposition now follows. 
Proposition 3.7.4 Any proof of equality from t to t' can he rearranged as 

t^h^t' 

where the initial equalities do not touch the root constructor. 

Note that the prefix- increasing steps y are essentially unique. There may be inde- 
pendent expansions of the inert frontier which can be reordered but every equivalent 
proof must do the same expansions. The point is that reading these steps in reverse 
gives a procedure which pulls the root structure of t to the root of t'. 

Corollciry 3.7.5 The structure Ca may be pulled to the root oft if and only if the 
Ca-prefix oft is a-inert. 

Proof. It has already been observed that such a puUing up process results in 
an inert prefix (of the appropriate sort). Conversely given an inert prefix of the 
appropriate sort clearly means that the Ca-frontier can be contracted shrinking the 
Ca-prefix. ■ 

As the equalities in the first part of the proof, x, do not touch the root constructor 
each equality must apply to one of the arguments of that constructor. Thus, for 
each argument we then have an equality proof, but each of these proofs can now be 
"normalized" into the form of the corollary. This gives a normal form for (directed) 
equality proofs and whence an algorithm for determining equality which amounts 
to matching the structure of the first term t starting from the root and pulling up 
that structure to the root of the second term and then proceeding inductively with 
its subterms. 



Chapter 4 



Polycategorical Semantics of 
Processes 

In this chapter we estabhsh that SIIa is the free polycategory with sums and prod- 
ucts generated from an arbitrary polycategory A. The derivations, when cut is 
ehminated and treated up to conversion, will be the morphisms of this polycate- 
gory. 

In Section we define and show that SIIa has poly-sums and poly-products. 
Then, in Section 14.2.11 it is shown that the sums and products are "soft" . Softness 
of the sum and products is necessary to establish the "Whitman Theorem" which 
characterizes the free polycategory with sums and products up to equivalence. 

We begin by establishing that SIIa is a polycategory. 

4.1 SIIa is a polycategory 

The reduction rules and the permuting conversions together define an equivalence 
relation (which we denote by ~) on derivations of a sequent. Our categorical se- 
mantics will have derivations modulo this equivalence as morphisms. Thus, the goal 
of this section is to prove: 

Theorem 4.1.1 SIIa is a polycategory whose objects are the formulas of the logic, 
and whose morphisms are r^- equivalence classes of derivations. 
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We shall start by presenting some technical results about the derivations in SIIa- 
A notion which will be useful throughout the rest of this thesis is that of an 
output sequent. A sequent F h A is an output sequent in case: 

• X eV imphes that X is an atom or of the form X — Yli^i 

• F e A implies that Y is an atom or of the from Y = '^j^j Yj, and 

• r U A contains at least one compound formula. 
Proposition 4.1.2 In SHa ' 

(i) Any cut-free derivation of a sequent T, X^j^i h A is equivalent to one whose 
principal rule is a cotupling applied to ^j-^i- 

(ii) Any cut-free derivation of a sequent F h A equivalent to one whose 
principal rule is a tupling applied to Yli^i- 

(iii) Any cut-free derivation of an output sequent F h A has as its principal rule 
either an injection or a projection. 

(iv) Any cut-free derivation of a sequent Ai, . . . , A^ \~ Bi, . . . , Bn, where the Ai 's 
and Bj's are atoms, must be an axiom (i.e., a morphism of A). 

Notice that this result can be extended to arbitrary derivations (not only cut-free 
ones) using the cut-elimination procedure. For example, any derivation of a sequent 
F, X^i^i ^ can be transformed to one whose principal rule is cotupling. 
Proof. Notice that (iii) and (iv) are immediate given which (non-cut) sequent 
rules may be applied in the respective situations, (ii) is the dual of (i) and thus, it 
is sufficient to prove (i). 

• Si^i ^^^y compound formula (i.e., all the other formulas are atoms) 
then the cotuple rule is the only one which applies, so this must be the principal 
rule. 
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If the principal rule is another cotupling 

{>S,r,E.x,hA}. 

then, using our inductive hypothesis, the proofs above may be transformed to 
have cotupling applied to Ei ^ their principal rule. This allows us to use 
the cotuple-cotuple interchange to transform the derivation so that cotupling 
applied to Ei is the principal rule for the original proof. 

If the principal rule is a tupling 

{r,E,^i^>S,A-}, 
r,E.^i^n,>S,A' 

then, using our inductive hypothesis, the proofs above may be transformed to 
have cotupling applied to Ej -^i their principal rule. This allows us to use 
the cotuple-tuple interchange to transform the derivation so that cotupling 
applied to Ei principal rule for the original proof. 

If the principal rule is a projection 

n,r,E.^^^ A 
n,r„r,E,^i^A 

then, using our inductive hypothesis, the proof above may be transformed to 
have cotupling applied to Ej its principal rule. This allows us to use the 

cotuplc-projcction interchange to transform the derivation so that cotupling 
applied to Ei i^ principal rule for the original proof. 

If the principal rule is an injection 

r,E.x,hy,,A- 
r,E.^«f-E,^.,A' 

then, using our inductive hypothesis, the proof above may be transformed to 
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have cotupling applied to J2i -^i principal rule. This allows us to use 

the cotuple-injection interchange to transform the derivation so that cotupling 
applied to Y2i -^i is the principal rule for the original proof. 

■ 

Lemma f2 . H . 1 1 has already shown that there are identity derivations which act in 
the correct manner. It is left to show that the composition given by cut satisfies the 
associativity and interchange laws. 

Proposition 4.1.3 Cut satisfies the associative law. That is, given sequents of the 
form 

rh/A,7:X 7 : X,r' A',^ : y (5 : F, T" K A" 

the composites {f]^g)]sh and f]^{g]sh) are -equivalent. 

Proof. By structural induction on /, g, and h] without loss of generality we may 
assume that /, g, and h are all cut-free. 

(i) / = Ix- In this case we have {Ix]-^ g)',5h =^ g;sh and Ix',--/ {g]s h) =^ g;sh 
which are equivalent. The case where h = ly is dual. 

(ii) / = a{ai ^— fi}i and F = $, a : Wi. Composing on the left first gives 

{a{ai ^^ fi}i;^g);sh =^ a{ai fi;^g}i]5h =^ a{ai {fi;^ g);5 h}i 

whereas composing on the right first gives 

^ fi}i'n {g'lS h) =^ a{ai t-^ fi,;^ {g;s h)}i 

which by induction are ^-equivalent. Since any derivation of a sequent F, a : 
J2i Wi \- A may be equivalently written to end with cotuphng apphed on a, 
this suffices. The case where h = {bj i— > hj)j and A" = Ylj Wj, is dual. 

(iii) We now consider the case where / is a map to a coproduct. There are two 
cases to consider. 
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(a) / = c?[afc](/'), a 7^ 7, and A = a : Wi, $. Composing on the left first 
gives 

{'a[ak]{f');^g);sh^ 'a[ak]{f';^ g);sh ^ 'a[ak]{{f';^ g);s h) 

whereas composing on the right first gives 

a"K](/');7 (9;sh) =^ 'a[ak]{f;j (g;sh)) 

which by induction are ^-equivalent. The case where h — (3 [bk]{h') with (3^6 
and r" = /3 : U- Wj is dual. 

(b) / = ^[ofc] (/') and X — ^ : Xi. Here we may suppose that g — ^{ai i— > 
gi\i (as X is a sum) and so composing on the left first gives 

{'lW\{f)hl{ai ^ gi}i);sh^ {f;jgk);sh 

whereas composing on the right first gives 

'^[ak\{f')h iliai ^ gi}i;sh) =^ ^[ak]{f');^'y{ai ^ gi;sh}i 

=^ f'h {9k',sh) 

which by induction are ^-equivalent. The case where h = 6 [bk]{h') and 
Y = 6: Yl- Yj is dual. 

) / = 'a"[afe](/') and T — -.Yli Wi. Composing on the left first gives 
{'a[ak]{f);jg);sh^ 'a[ak]{f;jg);sh^ 'a[ak]{{f;jg);5h) 
whereas composing on the right first gives 

which by induction are ^-equivalent. The case where h — P {h') and A" — /3 : 
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T^jWj,^ is dual. 

(v) We now consider the case where / is a map to a product. There are a number 
of subcases to consider. 

(a) / = a{ai ^-^ fi)i, a 7^ 7, and A = a : Wi, $. Composing on the left first 
gives 

{a{ai 1-^ fi)i;^g);sh^- a{ai 1-^ fi;^g)f,gh^- a{ai 1-^ {fi^-^ g)]5h)i 

whereas composing on the right first gives 

(y-{ai ^ fi)ih {g]s h) =^ a{ai ^ fi;^ {g]s h))i 

which by induction are ~-equivalent. Since any derivation of a sequent T \- a : 
Wi, A may be equivalently written to end with tupling applied on a, this 
suffices. The case where h = (3{bj 1— >• hj}j with (3^5 and T" = "if, (3 : Wj 
is dual. 

(b) / = 7(«i ^ fi)i, ^ = 7 : rij^i^ and g = V[afe](5'')- Composing on the 
left first gives 

(7(ai ^ fi)ih*l[ak]{g'))\8h^ Ukh9%h 
whereas composing on the right first gives 

7(«i '-^ fi)ihCl['^k]{9')]sh) =^'y{ai fi)ih'7[ak]{g']5h) 

=^ fkh {g''-:sh) 

which by induction are ^-equivalent. Since any derivation of a sequent F h a : 
Jl^ VFj, A may be equivalently written to end with tupling applied on a, this 
suffices. The case where h — S{bj 1— > hj}j and Y — 5 : Yj is dual. 
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(c) / = li^i ^ fi)i, ^ = 1 ■ Yli 9 operates on a channel /3 7^ 7. In this 

case we must explore the structure of g. First, let us assume g = (3{bj 1— >■ gj}j- 
Composing on the left first gives 

(7(«j ^ fi)ihl3{bj ^ 9j}j)]&h^ [5{bj 7(0^ f'dih9j}j;5h 

^ ^ (7(«i ^ fi)ih9j);sh}j 

whereas composing on the right first gives 

l{ai ^ fi)ih (P{bj ^ 9j}j;sh) =^ 7(ai ^ fi)i;^P{bj ^ gj]5h}j 

=^ /5{7(«i ^ fi)ih (bj ^ 9j;s h)}j 

The remaining cases where g is either P{bj 1— > g'j)^, /3 [bk\{g'), or /3 are 
all handled similarly. 

This concludes all the essential cases. If all of /, g, and h are atomic then 
composition is associative because it is associative in the underlying polycategory. 
If some of /, g, and h are atomic a quick check of the possibilities will show that 
one ends up with a case essentially hke one of the cases above. 

■ 

For polycategories one must also prove that composition satisfies the interchange 
law. 

Proposition 4.1.4 Cut satisfies the interchange law. That is, given sequents of the 
form 

rhfj:X,A,S:Y 7 : X, F' h. A' S : Y,T'' K A" 

the composites {f',-yg)',sh and {f;'yh);sg are '^-equivalent. Dually, given sequents of 
the form 

F 7 : X, A F' 5 : y, A' 7 : X, F", 5 : Y A" 
then f;-y {g;sh) and g;s {f',y h) are '^-equivalent. 
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Proof. Wc prove the first statement by structural induction on /, g, and h, duality 
handles the second statement. Without loss of generality we may assume that /, g, 
and h are all cut-free. 

(i) / = a{ai I— > fi}i and T — : J^- Wj. Composing with g first gives 

{a{ai ^ fi}i;^ gy,s h ^ a{ai ^ U-y g}i;s h a{ai ^ {Uj g);sh}i 

whereas composing with h first gives 

{a{ai 1-^ fi}i;sh);jh =^ a{ai i-^ Ushj^^g =^ a{ai i-^ {Us h);^ g}i 

which, by induction, are ~-equivalent. Since any derivation of a sequent 
r, Wi\- A may be equivalently written to end with cotupling applied on a, 
this suffices. 

(ii) We now look at the case where / is a map to a coproduct. There are three 
subcases to consider. 

(a) / = 7^[afc](/') and X = 7 : X^j^*- Here we may suppose that g = ■j{ai 1— >• 
gi}i (as X is a sum) and so, composing with g first gives 

whereas composing with h first gives 

{'l[ak]{f);5h);j-f{ai ^ gi}i ^ ^[ak\{f';sh);j-f{ai ^ gi}i 

=^ (f';sh);jgk 

which, by induction, are ^-equivalent. 

(b) / = 'a[ak]{f'), 7^ 7, a ^ S, and A — : Wi, ^. Composing with 
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g first gives 

{'a[ak]{f');^g);sh^ 'a[ak]{f;^ g);sh ^ 'a[ak]{{f;^ g);s h) 
whereas composing with h first gives 

{'a[ak]{f);5h);jg ^ 'a[ak\{f;5h);jg^ 'a[ak\{{f';sh);^ g) 
which, by induction, are ^-equivalent. 

(c) f — 5 [ofcK/O and Y — 5 : Y^- Yi. Here we may suppose that h — 5{ai i— > 
hi\i (as y is a sum) and so, composing with g first gives 

{'l[0'k\{f)hg)\5 5{ai ^ hi}i =^ ^[ak\{f;'yg);5Hai ^ hi}i 



whereas composing with h first gives 

(7^K](/');5(^{«i ^ hi}i)hg^ {f]5hk)]^g 
which, by induction, are ^-equivalent. 

(iii) / = *a[ak]{f') and F = a : Wi. Composing with g first gives 

(^K](/');7fl');'5^ =^ ^K](/';7S');5^ =^ ^^WMifhay^sh) 

whereas composing with h first gives 

(^K](/');5^);7fl' =^ ^[afe](/';5M;7fl' =^ ^[afe]((/';5M;7^) 

which, by induction, are ^-equivalent. 

(iv) We now look at the case where / is a map to a product. Again, there are a 
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number of subcases to consider. 

(a) / = a{ai i— > a 7^ 7, a ^ S, and A = a : Wj, Composing with g 
first gives 

{a{ai fi)i;^ g);s h a{ai 1-^ f^;^ g)i;g h a{ai 1-^ {fi\^g)\8h)i 
whereas composing with h first gives 

{a{ai ^ fi)i;sh);^g ^ a{ai ^ fi]sh)i]^g ^ a{ai ^ {fi]5h)]^g)i 
which, by induction, are ^-equivalent. 

(b) / = 7(«i ^ fi)i, ^ = 7 ■ Yli^h and g = '^[ak]{g'). Composing with g 
first gives 

whereas composing with h first gives 

{fk]5h)\^g' 

which, by induction, are ^-equivalent. 

(c) / = 7(^1 ^ fi)i, X = J : Yli-^ij and g operates on a channel /3 7^ 7. 
In this case we must explore the structure of g. First, let us assume that 
g = P{bj I— gj}j- Composing with g first gives 

(7(0* ^ fi)ihP{bj ^ 9j}j);5h^ P{bj ^ -f{ai ^ fi)i;j gj}j;5 h 

=^ P{bj ^ (7(«i ^ fi)ih9j)'^sh}j 
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whereas composing with h first gives 

(7(«i ^ fi)hsh);y(3{bj g^jj =^ 7(ai fi;s h)i;^ p{bj ^ gj]j 

which, by induction, are ^-equivalent. The remaining cases on the structure 
of g are handled similarly. 



(d) / — S{ai >—>■ Y — S : YliYi and h — S [ak]{h'). Composing with g first 
gives 

{S{ai fi)i;^g)]6 S [ak]{h') =^ 6{ai fi;^g)i;s S [ak]{h') 

=^ {fkhg)]5h' 

whereas composing with h first gives 

{5{ai ^ fi)i;s S [ak]{h'));^ g ^ {fk;sh');^g 
which, by induction, are ^-equivalent. 



(e) / = 6{ai I— > fi)i, y = S '■ Yii^i and h operates on a channel (3^6. 
In this case we must explore the structure of h. First, let us assume that 
h = (3{bj H- > hj}j. Composing with g first gives 

(7(«j ^ fi)i'n 9);s P{bj ^ hj}j 7(0^ fihg)u&P{bj ^ hj}j 

=^ ^ 7(«i ^ fih9)i;shj}j 

whereas composing with h first gives 

(7(0^ ^ fi)h5P{bj ^ hj}j);^g =^ P{bj ^ -f{ai ^ fi)i;5 hj}j;y g 

=^ I3{bj ^ (7(«i ^ fi)i;s hj);^g}j 
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which, by induction, are ~-equivalent. The remaining cases on the structure 
of h are handled similarly. 

Since any derivation of a sequent F h a : A may be equivalently written 

to end with tupling applied on a, this suffices. 

This concludes all the essential cases. If all of /, and h are atomic then 
composition satisfies the interchange property because it satisfies the interchange 
property in the underlying polycategory. If some of /, g, and h are atomic a quick 
check of the possibilities will show that one ends up with a case essentially like one 
of the cases above. 

■ 

This now shows that SIIa is a polycategory proving Theorem 14.1.11 

4.2 Poly-sums and poly-products 

In this section we show that SIIa is the free polycategory generated from (the 
polycategory) A under (finite) poly-sums and poly-products. We begin by defining 
sums and products in a polycategory. 

In a polycategory A, an object Yli^i-^i G A is said to be the poly-sum (or 
poly-coproduct) of a family of objects Xi G A, for i G /, in case there is a 
poly-natural correspondence 

, , {r,a:X,h^, A},g, 

where by poly-natural we mean that the following two equivalences 

h]-f a{fi}i = a{h]^ fi}i and a{fi}i]^ h = h}i 

hold (when a 7^ 7). These equivalences assert that cutting on an object and then 
forming the coproduct is the same as first forming the coproduct and then perform- 
ing the cut. 
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Products in polycategorics are (as wc expect) dual to coproducts. Explicitly, an 
object Yliei Xi E A is said to be the poly-product of a family of objects G A, 
for i e /, in case there is a poly-natural correspondence 

{ThjJUX^.A},^, 

(*) 



It will now be useful to define more "standard" injection and projection maps. 
The reader may have noticed that the injections and projections seem to be a little 
unfamiliar in their presentation. 

(mjection) i-r v < a (Projection) 



This may be "remedied" as follows. There are injection derivations X^ \-b,, Yli-^i 
for A; e / given by bk = hk{iXk)- With these more "standard" injections, the general 
injection terms may be identified with /; 6^. Note this is a valid identification, since 
there is a reduction of derivations 



Dually, the general projection terms may be identified with pk] f where Hi^* '"pk 

Remcirk 4.2.1 The typing will sometimes be left off the injection/projection maps 
as there is only one formula on each side of the turnstile and hence, it may be 
inferred from the annotated composition symbol ";-y". For example, if we write 
hk ;-y r, 7 : Xj h A it is clear that we are cutting on 7 : Xi. 

We will now work with the poly-coproduct (the dual observations hold for the 
poly-product). The first thing to establish is the connection between the poly- 
coproduct defined here and the standard way of viewing a coproduct. 



Proposition 4.2.2 For a polycategory A the following are equivalent: 
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(i) A has poly-coproducts (for a set I). 

(ii) There is an object Xi for each family of objects {Xi}i which has injection 
maps Xi l-fc. Xi and a cotupling operation producing a unique map F, 7 : 
Y^iXi \-^{fi}i A, where r,7 : h/. A, such that 

• {bi}i = ^EiXi 

• bi ,j lf{fi}i — fi 

• a{fi ;^ h}i, where a^j 

• h ;^ a{f,}^ = a{h ;^ fi}i, where a ^ 7 

Proof. To show that (i) imphes (ii) consider the identity map, 

J2i^i '~1e,x, Ei^j 

By the definition of poly-coproducts, this gives 

J2i^i '"lE.Xi T^i^i 

and hence, {bi}i = l^.x^- 

Now consider the composite 

Prom the definition of poly-coproducts we have the following correspondence 

Si Xi hi^.^. 7 : h 7 : T A 

so that bi \^'^{fi}i = fi. 

Similarly, the following poly-natural correspondences 

{r,a:Xi^f^A,^:Z ;^ 7 : Z, T K A%, 



r,a:Ei^i^a{/.W A>7:^ h 7 : ^, T' A' 
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and 

rKA,7:Z 7 : Z, T, a : W ^' 

show that a{fi}i ■,^h = a{fi h}i and h ;^ = a{h fi}i. 

The argument for the uniqueness of the comparison map 



A 




— ^—^ r, J2i 

is {fi}i = {bi ; h}i = {bi}i ;h = lY_^x, ;h = h. 

For the imphcation from (ii) to (i) we may immediately conclude the top-to- 
bottom direction of the correspondence from the definition of (ii). The argument 
for the bottom-to-top direction is as follows: 

= a{bi}i ;^7{/i}i 
= aih ■,^'y{fi}i}i 

= Oi{fi}i 

Writing out the terms explicitly, this says that 

This establishes both directions of the correspondence. That it is poly-natural 
follows from the definition (the last two conditions). ■ 

The next two propositions show that EIIa is the free polycategory generated 
from A with finite sums and products. 

Proposition 4.2.3 SIIa has finite poly-sums and finite poly-products. 

Proof. In order to establish that EIIa has finite poly-sums and finite poly-products 
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we must show that the inferences 
{r, a : X, h;^ A}^^, 

are two-way and poly-naturaL 

We begin with coproducts. Going from top-to-bottom is immediate via the cotu- 
phng derivation so we need only prove the other direction. By Proposition 14 . 1 . 2l we 
know that a sequent of the form F, ^jgj Xj h A may be written in a cut-free man- 
ner so that its principal rule is a cotupling which leaves us with the set of sequents 
{r,Xj h A}.g^. That this correspondence respects the equivalence relation ~ is im- 
mediate from our decision procedure as once the cotuple structure is made principal, 
equality is determined by equality of the arguments. This proves the bottom-to-top 
direction. 

It remains to show that this correspondence is poly-natural. However, this fol- 
lows immediately from rewrite (3). Products are handled dually and therefore this 
establishes that SIIa has products and coproducts. ■ 

Proposition 4.2.4 EIIa is the free polycategory generated from A with finite sums 
and products. 

Proof. To show that SIIa is the free polycategory generated from A with products 
and coproducts it suffices to show that all the identities (l)-(22) must hold in any 
polycategory with poly-products and poly-coproducts. 

The identities (1) and (2) clearly hold. (3) and (9) (dually (4) and (10)) follow 
by poly-naturality, i.e., 

(5) and (7) (dually (6) and (8)) follow from the interchange law, i.e., 

(F hfX,,A,Z; Xfc hfc, X,) ; Z, T' h, A^ 
(rh;Xfc,A,Z; Z,rh, A') ; X, ^.^i 



and 
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(11) and dually (12) follow from the associativity of cut 

r h/ A,Xfc, ; (Xfc Zli^i ; r', Xli^^ ^{9,k a') 

as hk ; {fi^jjj = fi'fc. 

(13) and dually (14) follow by the following argument (applications of poly- 
naturality) : 

{{fij}i}j = ^Y.,X, ; {{fij}i}j 

= {bi}i ; {{fij}i}j 
= {bi ; {{fij}i}j}i 
= {{h ; {fij}i}j}i 

~ {{fij}j}i 

A similar proof shows that (19) holds. (15) and (17) (dually (16) and (18)) follow 
by poly-naturahty. Explicitly, (15) is as follows: 



r,E.^.h/,}. A,n; YkH, E,Y, 

(20) and (21) follow by the interchange law (/ ; bk) ; bi = {f ; bi) ; bk, while (22) 
follows by associativity pk ] (/ ; bk) = {pk ; f) ; bk. m 

In the next section we show that the sums and products in SIIa satisfy another 
important property. 



4.2.1 Softness of poly-sums and poly-products 

The purpose of this section is to characterize the free sum and product completion 
of a polycategory. We begin with a discussion of poly-hom-sets. 

Given the types F and A, what does the poly-hom-set Hom(r; A) look like? If 
the domain F contains a coproduct Yli^i -^i^ codomain A contains a product 

fl^.gj Yj-, then (by the inferences and (Q) we may "break-up" the poly-hom-sets 
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Hom(r, ^jgj Xj ; A) and Hom(r ; H^gjl^-, A) into a product (in the category of 
sets) of poly-hom-sets, respectively, 

JJ Hom(r, ; A) and JJ Hom(r ; F^, A) 

iei j€J 

In the case where there are only products or atoms in the domain and coproducts 
or atoms in the codomain there is not in general a description of the poly-hom- 
set. In the free case for (non-poly) categories however there is a resolution due 
to Joyal |Joy95a[ Joy95b[ and other references], which he derived from Whitman's 



observation on lattices |Whi41j . Here we generalize these ideas to polycategories. 
Define the output index of a pair of types (F, A), denoted 3{T] A), as: 

• if a : riig/^i ^ r then the pairs {a,i), for i & I, are in 3{T; A). 

• if /? : J2jeJ^j ^ ^ then the pairs for j E J, are in 3{T; A). 
For example, given 

T = a:A, /3: H,,,!^., 7 : E,ej^. and A = 5 : Efcex^, e : Ui^^ Zi 

where A is atomic, the output index J(T; A) = {(/9, i),{6,k) \ i E I,k E K}. 

Given a product a : on a domain channel and {a, k), k E I, we will denote 

by 



[Hom(F,a:n.^i; A)](,, 



k) 



the poly-hom-set Hom(F, a : X^ ; A). The same notation will be used for a sum on 
a codomain channel. The following 

[Hom(F ; A)](«,) 

will then be used to indicate the disjoint union of poly-hom-sets where each product 
in the domain and coproduct in the codomain has been "broken down" into its 
composite elements. For example, applying this construction to F and A as defined 
above results in the following set of poly-hom-sets: 
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{Hom(^, W,, EjeJ^j ; ^fc' IlieL Zi)\teI,keK] 



Suppose A is a polycategory and B is a polycategory with sums and products 
such that A — > B is an inclusion morphism of polycategories. Consider a poly- 
hom-set Hom(r; A) in B such that the output index 3(r; A) is non-empty and any 
channel not in the output index is of the form T{A) where ^ e A. That is, each 
object of r is either "atomic" or a product, and each object of A is either "atomic" 
or a sum, so that this is the polycategorical analogue of an output sequent (which 
we call an output poly-hom-set). The morphism T : A — > B is called a semi- 
soft extension of polycategories if for any output poly-hom-set Hom(r; A) e B 
the map 

J] [Hom(r;A)](.,)^5!i(:^Hom(r;A) 

is a surjection, where -)}(a,i) is the cotupling map (in Set) and the underscore 
in a[i](-) is used to represent any map in [Hom(r; A)](a j). (The overline a is used 
to indicate that the map «[?](-) may represent an injection or a projection; it will 
depend upon the type of the a channel.) 

In terms of processes, a semi-soft extension guarantees that every process in an 
output poly-hom-set Hom(r; A) has as its next action an output event. 

Example 4.2.5 (Semi-soft extension) Consider the simple output poly-hom-set 
Hom(Q; : A X B ; j3 : C + D). Dropping the channel names we have: 



Hom(A xB ; C + D) 

(7,fe)ea(AxB;C+D) 



' Rom{A ; C + D) 
Rom{B ] C + D) 
Hom(^ xB ; C) 
^ Hom(A X B ; D) 
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The (injection and projection) maps are 



c^[l](_) : Hom(A ; C + 

^[2](_) : Rom{B ] C + D) 

/[!](_) : Hom(A x B ; C) 

/[2](_) : Hom(A x B ; D) 

so that considering them as a whole gives 



Hom(^ xB ; C + D) 
Hom(^ xB ; C + D) 
Hom(A xB ; C + D) 
Rom{A xB ; C + D) 



{7W(-)}(7,fe) : Yl Hom(A xB;C + D)^ Hom(^ xB;C + D) 

(7,fe) 

where (7, A;) e J(A x C + D). 

The inclusion X : A ^ B is called a soft extension in case for any output 
poly-hom-set Hom(r; A) the following diagram 

X; [Hom(r; A)]((„,i),(^,j)) 

((a,j),(/3,j))eJ(r,A) 



E {/3b'](-)}((c,i),(/3j)) 

(a,i) 



E {"W{-)}((a,i),(/3,j)) 

(.a,i) 



(*) 



E [Hom(r;A)](^,,) 
(7,fe)e3(r,A) 



{7W{-)}(7.fc) 



Hom(r; A) 

is a coequalizer diagram in the category of sets, where ((a, i), for (a, i), (/?, j) € 

J(r; A), a 7^ /9, represents choosing pairs from the members of Df(r; A) and the map 
X](/3 represents the coproduct (of the P components) of the co- 

tupling maps of the a components, and vise versa when a and P are switched. 

In terms of processes a soft extension means that given a process in Hom(r; A) 
which is able to output on two distinct channels, the order in which one chooses 
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to do the outputs is irrelevant, e.g., the maps la (/3 (/)) and (3 (fr(/)) will be ~- 
equivalent. 

Remark 4.2.6 In Set, given two parallel arrows f,g : A =^ B, the coequalizer of 
this pair always exists (see, e.g., |BW99j ). Thus, in order to show that the above 
diagram J^Fj ) is a coequalizer diagram we may assume that the coequalizer is given 
by (g, Q) and then show that the unique map h : Q ^ Hom(r; A) is an isomorphism, 
i.e., that the following diagram commutes: 

J2 [Hom(r; A)]((«,,),(^j)) 
({a,i),(/3,i))ea(r,A) 



E {/5[i](-)}{{Q,i),(/3,j)) 



E {"[«](-)}({Q,i).(;3,j)) 
(/3j) 



E [Hom(r;A)](,,,) 
(7,fc)6a(r,A) 



Q 




{m(-)}{-,,k) 



Hom(r; A) 



Example 4.2.7 (Soft extension) Consider the poly-hom-set Hom(a : AxB ; (3 : 
C + D) from the example above and the following coequalizer diagram (again drop- 
ping the channel names): 



I Hom(v4 ; C) Hom(fi ; C) 
\Hom(v4 ; D) Hom(fi ; D) 



jj^ ^ ^ Hom(A X B ; C) Hom(v4 ] C + D) 
Hom(A X B ; D) Hom(S ; C + D) 



Rom{A X B ; C + D) 
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where ^ and {3 will be constructed in what follows and 7 is the map from 
the example above. 

In Di all the "splittings" of pairs has been done. Fixing the first component of 13, 
the pairs ((a, 1), (/?, 1)) and ((a, 2), (/?, 1)) pick out the poly-hom-sets Hom(74 ; C) 
and Hom(i? ; C) respectively; a map from each of these is: 

^[l](_)(/3,i) : Hom(A ; C) Hom(^ x B ■ C) 
^[2](_)(;3,i) : Hom(5 ; C) Hom(^ x B ; C) 

where the subscripted 1) is used to indicate that the first component of /3 is fixed. 
The cotupling map of both of these maps gives a map 

Similarly, fixing the second component of (3 gives the maps 

^ [!](_) (^,2) : Hom(^ ; D) Hom(^ x B ; D) 
c^[2](_)(^,2) : Hom(S ; D) Hom(A x B ; D) 

and thus the cotupling map, 

{1^[1](_)(;3,2), ^[2](_)(^,2)} : A^i^2 

Together these (cotupling) maps give the following map 

E {«[!](-)(«), « [2](-)(/3j)} ■.D^^D2 
je{i,2} 

In the same way a second map may be constructed where a is fixed instead: 

J2 {^[l](-)(a.), /[2](-)(a,i)} -.D.^D, 
ie{l,2} 

Definition 4.2.8 An inclusion X : A — > B which is both a semi-soft and soft 
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extension is said to be soft. 

Lemma 4.2.9 The inclusion morphism of poly categories A — > SIIa is soft. 

Proof. That the inclusion X is semi-soft follows by Proposition 14.1.21 and which 
(non-cut) rules we may apply. 

As mentioned in Remark l4.2.(j^ to show that it is a soft extension we will assume 
that the diagram fjF] ) has a coequalizer {q,Q), and show that Q is isomorphic to 
Hom(r, A). As we are in Set, a bijective correspondence between the two objects 
suffices to establish the isomorphism. 

As Q is the coequalizer, there exists a unique map h : Q ^ Hom(r; A) such that 
q;h = {^[k]{-)}{'y,k)- But {7[A;](_)}(^,fc) is a surjection and hence, so is h. It is left to 
establish that h is an injection. 

Suppose that a[i]{f) and P[j]{g) are equivalent morphisms in Hom(r; A). From 
the decision procedure for Sll-morphisms we know that the equality of morphisms is 
determined by the equality of their arguments so that a[i]{f) and P[j]{g) are equiv- 
alent to morphisms of the form a[i]{P[j]{f')) and respectively. This 
implies that /' and g' are equivalent in ^ [Hom(r; A)](^(^a,i),(i3,j)), and therefore, 

must be coequalized in Q establishing that h is injective. 

Thus, the map h is a bijection and Q = Hom(r; A), establishing that 

({7[A;](_)}(,,,), Hom(r;A)) 

is the coequalizer. ■ 

X F 

Let A — > SIIa be an inclusion morphism of polycategories and A > B be a 

full inclusion morphism of polycategories (injective on objects and an isomorphism 
on each poly-hom-set), where the objects of B are generated from the objects of 
A under finite sums and products. That SIIa is free guarantees that there is a 
unique comparison morphism of polycategories EIIa > B such that the following 
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diagram commutes 

A ^SHa 




Given this data, the "Whitman theorem" which characterizes the free polycate- 
gory with sums and products is as follows. 

Theorem 4.2.10 (Whitman theorem) For F and F* as above: 

(i) If F is a semi-soft extension then F* is full. 

(ii) // F is soft then F* is an equivalence of polycategories. 
Proof. 

(i) That F* is full follows from the following induction. Suppose / : F*{r) 
F*{A) e B (where . . . , X„) = F*(Xi), . . . , If / is atomic this 
implies that / G A, and thus also in SIIa. So suppose that / is not atomic. 
The point will be to show that / may be "decomposed" into a "Sll-word" of 
simpler (smaller) functions which, by induction, are in the image of F* . Then, 
as F* preserves sums and products the same Sll-word may be used to place 
/ in the image of F* . 

To see that / may be decomposed consider the form of F*{T) and F*(A). If 
F*{T) contains a sum or F*(A) contains a product, then by the equivalences Q 
and 0, / may be decomposed on the sum or the product respectively; if 
neither of these is the case then, as F is a semi-soft extension, / must have 
been the result of an injection or a projection map. In either case, we are able 
to decompose / into smaller functions. 

(ii) To show that F* is an equivalence of polycategories it suffices to show that F* 
is full, faithful, and essentially surjective, where by essentially surjective we 
mean that each object in B is isomorphic to F*{X) for some X in SIIa. If F 
is soft, then by definition it is a semi-soft extension, and thus, F* is full. 
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To show that F* is faithful, consider a parallel pair of arrows F*{f),F*{g) : 
F*(T) =4 F*(A) such that F*{f) = F*{g); as above we may decompose F*{f) 
and F*{g) into SIT- words. Again, the decomposition is obvious if either F*{r) 
contains a sum or F*{A) contains a product, so suppose not, and moreover, 
suppose that we are able to decompose F*{f) and F*{g) into different SII- 
words (via injection or projection maps). Then, by softness, these words may 
again be decomposed so that they are equivalent. Thus, in both cases, F*{f) 
and F*{g) may be decomposed into different substitution instances of the same 
SIT-word. As F* is full, these words involve simpler functions of the form 
F*(h). By induction the corresponding subterms h are equal, and thus f = g. 

To see that F* is essentially surjective, notice that since B is also generated 
from A under finite sums and products, each object of B must be isomorphic 
to an object in the image of F*. 



Chapter 5 
Process Semantics 



The term calculus for SII used in the previous chapters was motivated by the inter- 
pretation of Sll-derivations as processes. The purpose of this chapter is to explain 
precisely how these terms correspond to processes. To this end a semantics for pro- 
cesses is introduced. This semantics could alternatively have been described as a 
game theoretic semantics, and indeed many of the ideas and terminology are derived 
from that view (see, e.g., |AM98 bl IXJMnnl IH( )nnp . 



5.1 Behaviours 
5.1.1 Legal transitions 

A protocol may be in an atomic state, an output state, or an input state. These 
states may be assigned one of three different roles which will be used to determine 
the legality of transitions: 

• Source roles: these are denoted by superscripting a 0. 

• Sink roles: these are denoted by superscripting a 1. 

• Flow roles: these are denoted by superscripting a +. 

Given a protocol on a domain channel we may calculate its role inductively as 
follows: 
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any atomic formula A has a flow role: A'^; 
the empty coproduct has a source role: { 
the empty product has a sink role: 



• the role x of a coproduct, {aj : ^^'}f is determined by the roles Xi of its 
subformula as follows: 



if and only if (Vi) Xi — 

1 if and only if {3\k) Xk — 1 and (Vi k) Xi — 
+ otherwise 



• the role x of a product, (oj : A^')^ is determined by the roles Xi of its subfor- 
mula as follows: 

if and only if {3\k) Xk — and (Vi ^ k) Xi — 1 

if and only if (Vi) Xi^l 
+ otherwise 

The role of a protocol on a codomain channel is calculated dually, i.e., swap the 
and the 1 while leaving + alone. It is easy to see that any protocol which contains 
an atomic formula will have a flow role. 

It should be mentioned that the purpose of the role of a protocol is to identify 
the initial (source), final (sink), and other (flow) protocols, in the usual categorical 
sense. 



Example 5.1.1 (Roles) Some example protocols (on domain channels) with their 
roles calculated. 



3. 



.+ 



.1 qO .1 .1 
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A protocol transition is legal (is a legal transition) in case it starts at a state 
in a flow role and is either 

• an output transition which ends at a state which does not have a sink role, or 

• an input transition which ends at a state which does not have a source role. 
Graphically, a transition in the domain is legal in case it is either 



or 



or 
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where s represents a product or a coproduct state. In the codomain a transition is 
legal in case it is either 



or 



or 



Example 5.1.2 (Legal transitions) Using the protocols from the above example 
(Example I5.1.1|) . we indicate the legal transitions as solid lines and the non-legal 
transitions as dashed lines. 





Lemma 5.1.3 For any protocol X in an input flow state there is a sequence of legal 
input events which drives the protocol into either an atomic, output or sink state. 

Proof. We prove this for a protocol X on a domain channel; duality covers the 
case where X is on a codomain channel. 
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For X on a domain channel, to be in an input flow state it must be of the form 
X = {flj : Xj}jg/ where / 7^ 0. As X has a flow role, this means that not every Xj 
has a source role, i.e., there is at least one k & I such that X^ or X^. Thus, input 

to X. In the former case we are done as X^ has a sink role. In the latter case 
has a flow role which may be either an atomic, output or input state; if it is an 
atomic or output state then the desired conclusion has be reached, and otherwise, 
it is an input state which we may inductively assume has the desired property. ■ 

5.1.2 Legal behaviours 

Suppose a channel a is assigned a protocol X. A legal channel behaviour (or 
simply channel behaviour) for a, denoted pQ,, is a finite sequence of legal events on 
a satisfying its assigned protocol X (see Section HOjl . For example, the behaviour 
(a, 6) for a channel a represents that on a the input event a was received, after 
which, the event b was output. 

An (input or output) event e may be appended to a channel behaviour p^, 
denoted p^ * e. Similarly, an (input or output) event e' may be prepended to p^, 
which is denoted e' *pa- For example, (a, b) *c = {a, b, c) and c * (a, b) = (c, a, b) . In 
this manner (finite) sequences of events may be appended or prepended (or both) 
to a channel behaviour. 

If pQ, and are two channel behaviours on a, we say that p^ is a prefix of q^, 
denoted pa ^ la, if there exists a sequence of events p^ such that pa * p^ = qa- It 
is a proper prefix, denoted pQ, IZ q^, if pQ, C q^ and pQ, 7^ qo,. The notation p q 
and p q is used to indicate that p is a prefix of q separated only by input or 
output events respectively. 

A legal behaviour (or simply behaviour) p = (p^,^, . . . , pQ,„) is a tuple of 
channel behaviours, one for each channel along which the process interacts. We will 
typically make use of tables to denote behaviours. For example, if {a,b)a, (c, d,e)i3, 
{f)-y, and {g, h)s are channel behaviours for a, P, 7, and 6 respectively, where the 
domain consists of a and (3 and the codomain consists of 7 and S, the behaviour 
consisting of these channel behaviours may be denoted 



107 





e 






h 


d 




h 


a 


c 


f 


9 


a 




7 


6 



The dual behaviour p* of p is the behaviour p in which input events are con- 
sidered as output events and output events are considered as input events. That is, 
any input event in p is an output event in p*, and similarly any output event in p is 
an input event in p*. For example, the dual of the behaviour above is: 





e 






b 


d 




h 


a 


c 


f 


9 


a 




7 


s 



The last states of a behaviour is called its frontier. For example, given the 
protocols 



a : 




and the behaviour 











c 








a 




J 


k 


a 


/5 


7 


s 



The frontier consists oi a : A, ^ : [g : E, h : F), '~f : H, and 6 : I. Notice that the 
frontier is actually representing a sequent: it is what is yet to be proved. In the 
above example, the sequent the frontier represents is: 



a: A, (3:{g:E,h:F)hj:H, 6:1 
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Given any behaviour p in which a is a channel of this behaviour, we may form 
the restriction of p to a, denoted p^. For example, 





e 






b 


d 




h 


a 


c 


f 


9 


a 




7 


6 



Pa 



a 



The prefix and proper prefix of behaviours are defined in the obvious way, i.e., p □ 
q if for each channel a of p we have p^^ C q^,, and p IZ q if p C q and p 7^ q. Appending 
and prepending events is similar to the case for channel behaviours except that the 
channel to append/prep end on must be specified, e.g., p * /3[a] is interpreted as 
(Pai, • • ■,Pi3*P[a], ■ ■ ■,PaJ and P[b]*p is interpreted as (po^, . . . ,/5[a] *p^, . . .,paj- 

A behaviour in which all the states at the frontier have either fiow (+) or sink 
(1) roles is called an antecedent behaviour. An antecedent behaviour is called 
saturated if for any state at the frontier, it is either atomic, has a sink role, or has 
an output fiow role. If all the states at the frontier are atomic, we may refer to this 
behaviour as being atomic saturated. 

Two behaviours p and q are compatible, denoted p q, if for each channel a 
either p^ □ q^ or q^ ^ p^. Given two compatible behaviours p and q, their join, 
denoted p V q, is defined as: 



. . , qa if Pa ^ qa _ 
(P V qja = \ for all a 

Pa if qa E Pa 



Example 5.1.4 (Compatable behaviours) The following behaviours 



and 











b 




a 




a 


c 


d 




a 


P 


7 


5 





e 






b 


d 




c 


a 


c 


d 


a 


a 




7 


s 



are compatible with their join given by: 
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e 
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c 


a 


c 


d 


a 


a 


/9 


7 


5 



Definition 5.1.5 A behavioural entailment (or simply entailment) is either of 
the form 

p h a[a\ 

where p is an antecedent behaviour and a is a legal output event on channel a so 
that p * oi[a\ is itself a behaviour, or 

where / : F — > A is an atomic morphism on the frontier of p. We call p the 
antecedent of the entailment and the a [a] or / the conclusion of the entailment. 
If the conclusion of an entailment is an atomic morphism it is called an atomic 
entailment. The notation p h x will be used to denote that conclusion may be 
either an output event or an atomic morphism. 

Notice that no events may be added (or removed) to the antecedent of an atomic 
entailment, effectively "ending" the entailment. A hanging entailment is an en- 
tailment in which the conclusion is an output event which gives a transition to a 
state with a source (0) role. Observe that after a hanging entailment p h a[a] , the 
ensuing behaviour p * a[a\ will no longer be an antecedent behaviour. 

We will usually talk about a set of entailments Q : F — > A, where every en- 
tailment in Q has as domain channels F and codomain channels A. An antecedent 
behaviour which occurs in Q (i.e., an antecedent of some entailment in Q) will be 
called a Q-antecedent. The notation afa] * Q will be used to denote the set of entail- 
ments Q with the event a[a] prepended to each of them, e.g., if Q = {pj h Xj | i e 7} 
then a[a\ * Q = {a[a] * pj h x j | i e /}. 

An output event a[a] G p is Q-justified if there is an entailment u h a[a] e Q 
such that u * a[a] E P- A Q-justified behaviour is a behaviour in which all the 
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output events are Q-justified. A Q-justified behaviour which is also an antecedent 
behaviour (not necessarily a Q-antecedent) will be called a Q-preantecedent. Note 
that this notion of justification is not related to the Hyland-Ong |HO00l and other 
references] notion of justification, and is actually a reachability condition. 

Lemma 5.1.6 Let Q be a set of entailments. Every Q-preantecedent can, via a 
sequence (possible empty) of legal inputs, evolve to a saturated Q-preantecedent. 

Proof. Let p be a Q-justified antecedent behaviour. Then all the states at the 
frontier of p must have either fiow or sink roles. Consider the states with fiow 
roles. By Lemma [5.1.31 we are able, via a sequence of input events, to drive each of 
these into either an atomic, output, or sink state. Thus, we are able to produce a 
behaviour p' such that every state in its frontier is either an atomic state, an output 
state, or a sink state, i.e., a saturated behaviour. Moreover, since input events do 
not affect justification we have that p' is Q-justified. ■ 

5.1.3 Extensional processes 

Definition 5.1.7 A set of entailments Q : F ^ A is an extensional process if it 

satisfies the following conditions: 

EP-1 All Q-antecedents are Q-justified. 

EP-2 If p h a[a], q h a[b] E Q such that p^ = and p ^ q, then a = b. 

EP-3 For any Q-preantecedent p and saturated Q-preantecedent q where p q, 
there is a Q-antecedent p' such that p p' q. 

EP-4 If a and (3 are distinct channels and p h a[a\, q h P[b] G Q such that pa = c\a 
and p ^ q, then q * a[a] h (3[b] G Q. 

EP-5 If a and (3 are distinct channels such that p h a[a] G Q and P[b] is a legal 
input event given p, then p * h a[a] G Q. 

EP-6 If a and P are distinct channels such that p * p[b] h a[a] G Q, then p h a[a] G 
Q. 
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EP-7 If a and j3 are distinct channels and p is a Q-preantecedent, such that p*/3[6] h 
a.[a\ e Q for every possible legal input h on /3, then p h a[a\ G Q. 

Remcirk 5.1.8 The definition for an extensional process is rather dense, and so it 
may help to have some intuition behind the rules, which we give here. First of all, 
behaviours may be thought of as partial processes. The behaviour is explicit repre- 
sentation of the history of the process. Entailments may be thought of as a partial 
processes which may perform an output event (the conclusion of the entailment) . 

In this system, justification is a reachability condition for processes, i.e., to out- 
put certain events certain other events must have already been performed. So, EP-1 
asserts that any output event in the antecedent of each entailment in an extensional 
process is reachable given what events have been previously performed. EP-2 en- 
sures that processes are deterministic. That is, two compatible behaviours (two 
processes with compatible histories) which are able to output at a given state on 
a particular channel, must output the same event. EP-3 states that if a process 
is able to perform an output event, then it must eventually perform one. In game 
semantic hngo, this says that the player may not give up. The rule EP-4 states that 
if a process can perform an output event at a certain stage, then it can certainly 
perform that output event at any later stage (say after first receiving some other 
input events and performing some other output events). The rule EP-5 allows the 
environment to input events without affecting the the output event the process is 
about to produce. EP-6 states that output events do not affect the justification 
(reachabihty) of other output events. Finally, EP-7 states that if for every possible 
input events on a given channel, a process is able to output the same event, then 
this process must then be able to perform this output event immediately without 
first receiving any of these inputs. 

Remark 5.1.9 We have found it useful to think of behaviours and entailments 
using "landscape" diagrams. For example, the diagram on the left below is a repre- 
sentation of a behaviour and the diagram on the right below is a representation of 
an entailment, the black square representing the conclusion of the entailment. 
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In this way we may think of a justified output event in a behaviour as: 




Using these diagrams, the premise and conclusion of the rule EP-4 are respectively 
the left and right diagrams below. 




Lemma 5.1.10 Let Q : T ^ A be a set of entailments satisfying EP-1 (i.e., a set 
of Q-justified entailments). If p and q are Q-preantecedents such that p ^ q, then 
py q is a Q-preantecedent. 

Proof. This is obvious as any output event in p is justified in p C p V q, and 
similarly for output events in q. ■ 
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Lemma 5.1.11 Let Q : T ^ A be a set of entailments satisfying EP-1. Suppose 
that p and q are Q-preantecedents such that p IZ q and for all channels a either 
Pa = c{a, or there is an output event a[a] G q such that pa * a[a] C q^. Then there 
is an output event f3[b] G q such that its justification u is a prefix of p. 

Proof. Let for z G {1, . . . , n} where > 1, be all the channels in which pQ,- IZ q^. 
and consider output events ^ q just past the frontier of p, i.e., p * ai[ai] □ q. 

Consider afe[o.fc] ^ q where k G {1, . . . ,n}. Its justification G Q must have 
its channel behaviour for ak contained in p. If ^ p then there exists a A;' G 
{1, . . . ,n}\{k} such that afc/fafc'] G but ajt'[afe'] P- The justification of afc^c^fc'] 
in Ufc, say u^', must be a prefix of and thus, must have channel behaviours for 
and ak' contained in p. Continuing this process means that eventually we will find 
an output P[b] with justification u G Q such that u Z p. ■ 

Lemma 5.1.12 Let Q be a set of entailments satisfying EP-1, EP-4, and EP-5. If 
p h X G Q, and q is a Q-preantecedent such that p Z q and pa = <]a, then q h x G Q. 
Proof. We proceed by induction on the number of events between p and q. If 
there are no events between p and q then p = q and therefore, p h x G Q. 

So suppose that there are events between p and q and consider the channels 
Pi, for i G /, in which pp. IZ q/?^. There are two cases to consider: on some Pi we can 
add input events and on no Pi can we add an input event. 

In the first case, use EP-5 to add an input event to p h x. This new entailment 
and q are now separated by — 1 events so that by the inductive hypothesis q h 
X G Q. 

In the second case we may conclude by Lemma 15.1.111 that there is an output 
event Pk[b] G q (but not in p) for some /c G / such that its justification is a prefix of 
p. By EP-4 we may add this event to p h x, i.e., p * P[b] h x G Q. Applying the 
inductive hypothesis to p * P[b] h x and q now yields q h x G Q. ■ 

The following useful fact is a consequence of the previous lemma. 

Corollary 5.1.13 Let Q be a set of entailments satisfying EP-1, EP-4, and EP- 
5. // p h X G Q and q is a Q-preantecedent such that p ^ q and pa = c{a, then 
p V q h X G Q. 



114 



Proof. It is clear that p V q is a Q-preantecedent with p ^ (p V q) and pa = (p V q)^ 
so that by Lemma 1^.1.121 pVqhxeQ. ■ 

The next proposition shows that an extensional process is maximal 

Proposition 5.1.14 Let Q, Q' : F — A be extensional processes. // Q C Q' then 
Q = Q'. 

Proof. To show equahty we must show that Q' C Q. To this end, suppose that 
p' h X e Q' and let p be a Q-preantecedent such that p ^ p' (p may be the empty 
preantecedent). We proceed by induction on the number of events between p and 
q. If there are no events between p and q then p = q and therefore, q h x G Q. 

So, suppose that there are events between p and q. There are two cases: we 
can add an input event on some channel a or on no channel can we add an input 
event. 

In the first case use EP-5 to add an input event to p which corresponds to an 
event in q. This preantecedent and q are now separated by — 1 events so that by 
the inductive hypothesis q h x G Q. 

In the second case, consider p to be a Q'-preantecedent . By Lemma fS. 1.111 there 
is an output event a[a] G q such that its justification is a prefix of p. This implies 
that p * a[a] is a Q'-preantecedent, and therefore, a Q-preantecedent. p * a[a] and q 
are now separated by — 1 events so that by our inductive hypothesis q h x G Q. 

We have now shown that Q' C Q and consequently Q = Q'. ■ 

5.2 Proto-processes 

A set of entailments J satisfying the conditions EP-1 through EP-3 is said to be a 
proto-process. Explicitly, a set of entailments J* is a proto-process if it satisfies 
the following conditions: 

EP-1 All ^-antecedents are T-justified. 

EP-2 If p h a[a], q h a[b] G T such that pa = (\a and p ^ q, then a = b. 
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EP-3 For any y-preantecedent p and saturated y-prcantecedent q where p q, 
there is a J"- antecedent p' such that p p' q- 

In this section we show how to translate a (syntactic) process /, into a set of 
entailments such that IT forms a proto-process. The main result of this section is 
that a proto-process (P may be enlarged in such a way that it additionally satisfies the 
rules EP-4 ~ EP-7, i.e., a proto-process may be enlarged to an extensional process. 
This gives a way to translate syntactic processes into extensional processes. 

5.2.1 From (syntactic) processes to proto-processes 

Given a (syntactic) process / : F ^ A, the translation of / into a set of entailments, 
denoted 3^, is defined inductively as follows: 

• If F or A (or both) contain a protocol with a source role, then set H — $. 

• If there are no protocols in F and A which contain a source role and 

- / is atomic, then set H = {\- /}. 



- / = a{ai ^ fi}i^i or / = a{ai ^ fi)ia, then set 3" = |J{"N * ^i}^ 



- f — a [a](/') or / = q; [a\{f'), then set H — {\- a[a\, a[a\ * If'}, where If' 
is the translation of /'. 

Example 5.2.1 (Translating (syntactic) processes) 

1. Given the following process (no source roles; assume that the atomic mor- 
phisms are well-typed) 



where is the translation of /j. 
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the translation produces the following set of entailments: 
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2. This next example illustrates how the translation handles a (sub)protocol with 
a source role. Consider the following protocols and process (where f : A ^ B 
is atomic): 



o ' 

a / \ b fj a, / \ b 

a : 



b^ /3[a](/) 



Here a on a is an input transition to a protocol with a source role. The 
resulting set of entailments is: 
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We now wish to establish that this translation procedure results in a proto-process. 
First however, there is an observation which is required. 
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Proposition 5.2.2 The empty set (ll : T ^ A is an extensional process if and only 
if there is a protocol with a source role in the domain or in the codomain (or both). 

Proof. We first prove the "if" direction. All the premises of the EP-rules, except 
for EP-3, involve having some entailments, and thus vacuously satisfies these rules. 
To see that satisfies EP-3 as well recall the definition of an antecedent behaviour: 
a behaviour is an antecedent behaviour in case each state at the frontier has either 
a flow or a sink role. If F or A contain a protocol with a source role, there can be no 
antecedent (or preantecedent) behaviours. Thus, satisfies EP-3, and is therefore 
an extensional process. 

For the "only if" direction suppose neither F nor A contains a protocol with a 
source role. This implies that the empty behaviour is an preantecedent behaviour 
and, therefore, EP-3 would require to contain some entailment. This is a contra- 
diction and therefore F or A must contain a protocol with a source role. ■ 

Proposition 5.2.3 If a set of entailments 3^ is the result of translating a (syntactic) 
process f : T ^ A, then 3^ is a proto-process. 

Proof. We proceed by structural induction on the process /. If / is atomic or one 
of F or A contains a source role, then the translation of / is clearly a proto-process. 

So assume now that the translation fits one of the other cases. It must produce 
either 

(i) |^{Q;[aj] * J'i} or (ii) {l-a[a], a[a] * i?'} 

where we inductively assume that the J'j's and J' are proto-processes. The goal is 
to show that this new set of entailments is a proto-process. 

EP-1 (i) Let p be a ((Jig/iafoi] *3'i})-antecedent and suppose that (5\b\ e p. That p 
is a (U-gj{Q;[ai] *3'j})-antecedent implies that p must be of the form a[ak\ *p', 
for some k e I, where p' e 3^k. So, I3[b] must be in p', and as is a proto- 
process, it must be justified in 3^k, say by u, but this implies that afafe] * u 
justifies it in Ui67{'^[^i] 
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(ii) There are no output events in h a[a\ so it justified, and any antecedent 
in a[a\ * 3"' is justified using an argument similar to (i) above. 

EP-2 (i) Suppose that for some k e I, a[c\ * p h /5[a], a[c] * q h f3[b] G a[c] * 3^k 
such that (a[c] * p) - (q;[c] * q) and (a[c] * p)^ = (a[c] * Then p h (3[a], 
q h /?[&] G J'fe such that p ^ q and p^ = and so a = 6 by EP-2 in 3"^. 

(ii) The entailment h a[c\ and any entailment in a[c\ * 3^' will never have the 
same channel behaviour on a, and therefore, the only case we need to consider 
is if a[c\ * p h /5[a], a[c\ * q h (3\b] G a[c\ * T such that (a[c] * p) (a[c] * q) 
and (a[c] * p)/3 = (a[c] * q)^. Using an argument similar to (i) above, this 
implies a = b. 

EP-3 (i) Let q be a saturated (IJie/{<^['^«] * 3'i})-preantecedent. It must be of the 
form a[ak] * q', for some k E I, where q' is a saturated J'fc-preantecedent. By 
EP-3, q' h X G J'k, and thus, a[ak] * q' h x G UiG/{'^['^*] * -^i} satisfying 
EP-3. 

(ii) Here, similarly to (i) above, any saturated {h a[a], a[a]*5''}-preantecedent 
q is either of the form a[a] * q' or q', where q' G 3^'. Thus, an argument similar 
to (i) above suffices. 

Thus, since each step produces a proto-process, the complete translation "J is a. 
proto-process. ■ 

An important example of a proto-process is the identity proto-process. As 
it is known how to form the identity process (from the identity derivation; see 
Section . Proposition 15.2.31 tells us how to form the identity proto-process. 

Example 5.2.4 (Identity proto-process) The identity process a : 
X where X is the protocol 



X = {a : A,b : {d : B,e : {)},c : if : C,g : {})} 
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is defined to be: 

' a^/[a](lA) 
lx = al ^LJl I /5[e](l()) ]' > 

The proto-process resulting from the translations is as follows: 
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5.2.2 Proto-processes to extensional processes 

The purpose of this section is to prove: 

Theorem 5.2.5 If? is a proto-process then there exists a unique eoctensional pro- 
cess Q with (P C Q. 

The idea will be to enlarge a proto-process with additional entailments in such a 
way that this new set of entailments will satisfy the rules EP-4 ~ EP-7. If this can 
be accomplished, the new set of entailments will satisfy all the rules of an extensional 
process. To this end, we prove a series of lemmas (one for each additional EP rule) 
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which allows us to add entailments to a proto-process such that the resulting set of 
entailments is a proto-process. 

Lemma 5.2.6 Suppose that is a set of entailments satisfying EP-i for i e 
{1,2,3}. An application of EP-4 to the entailments of "Pi produces a larger set 
of entailments 9^ which satisfies EP-i. That is, ifp\- a[a\, q h e "J^i, such that 
p □ q and pa — qa, then (P- = O^j U {q * a[a] h f3[b]} satisfies EP-i. 
Proof. For each i e {1, 2, 3}, we must show that J*^ (defined above) satisfies EP-i. 

EP-1 Our new antecedent q * a[a\ is 9i-justified (as p h a[a\ e CP) and so it is 
5"i-justified. 

EP-2 Suppose that x \- f3[c] E T2 such that = (q * a[a])^ and t (q * a[a]). 
Then = q^ and r q in J'2 so that b = c. 

EP-3 Adding an output event to an entailment does not increase the number of 
Tg-preantecedents and thus, 7'^ satisfies EP-3. ■ 

This allows us to conclude: 

Corollary 5.2.7 If "y is a proto-process, the closure of 7 with respect to EP-4 is a 
proto-process. 

Lemma 5.2.8 Suppose that 7i is a set of entailments satisfying EP-i for i e 
{1,2,3}. An application of EP-5 to an entailment in 7^ produces a larger set of 
entailments CP^ which satisfies EP-i. That is, if p \~ a.[a\ e CPj and is a legal 
input event given p, then CP^ = CPj U {p * h a[a]} satisfies EP-i. 

Proof. For each i e {1, 2, 3}, we must show that CP- (defined above) satisfies EP-i 
EP-1 Adding an input event to a CPi-antecedents will not affect its CPi-justification. 

EP-2 Suppose p h a[a] e J'2 and that is a legal input event given p. Adding 
this input to p gives an entailment p * /9[6] h a[a] G Now suppose that 
there is a q h G ^2 such that (p * /3[6])a = qa and p * q. Then 

clearly, p^ = qa and p ^ q in T2 so that a — b. 
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EP-3 Adding input events does not increase the number of ya-preantecedents and 
thus, J'3 satisfies EP-3. ■ 

Similarly here we may conclude: 

Corollciry 5.2.9 If? is a proto-process, the closure of 7 with respect to EP-5 is a 
proto-process. 

Enlarging a proto-process with respect to EP-6 has a slightly different flavor 
from the rest in that it cannot be done one step at a time. We must take the closure 
of the set with respect to EP-6 in order for it to work. Another difference is that 
the set we wish to enlarge must satisfy all the rules of a proto-process, unlike the 
other lemmas. 

Lemma 5.2.10 Let be a proto-process. The closure of T with respect to EP-6 
produces a larger set of entailments "J" which is itself a proto-process. 

Proof. We must show that 9' satisfles EP-1 ~ EP-3. 

EP-1 Suppose p is a ^'-antecedent and consider an output event a[a\ G p. That p 
is a CP'-antecedent implies that there is an J-antecedent p' such that p Co p'- 
As CP-antecedents are justified a[a] must have some justifying antecedent in 
y, say u, i.e., u h a[a] G J* such that u C p'. In u there may be some channels 
7j such that p^^. Co u^j, but simply applying EP-6 to the output events on 
these channels gives an entailment u' h a[a] G J" such that u' C p. Thus, 
a[a\ is justified in CP'. 

EP-2 Suppose that p' h a[a], q' h a[b] G CP' with q'^ = p'^ and q' — p'. As EP-6 
removes output events this implies that there are entailments p h a[a\, q h 
a[b] G CP such that p' P and q' q. Clearly p^^ = q^: and by induction 
on the number of "incompatible" output events, we will show that p ^ q so 
that a — b follows. 

If there are no incompatible output events then p ^ q, so assume that there 
are N incompatible output events. Consider a particular one, say /?[c] G p 
and /3[d] G q, and their respective justifications in CP: u h /3[c] and s \- P[d] 
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where u IZ p and s IZ q. Now Ufs = and u and s have less than N 
incompatible events so that by the inductive hypothesis r s and so c = d. 
This now implies that p and p have — 1 incompatible events, so that again 
applying the inductive hypothesis p ^ q. 

EP-3 Removing output events does not increase the number of (P-preantecedents 
and so 3" satisfies EP-3. ■ 



Lemma 5.2.11 Suppose that is a set of entailments satisfying EP-i for i G 
{1,2,3}. An application of EP-7 to an entailment in produces a larger set of 
entailments which satisfies EP-i. That is, if p is a antecedent and p * f3[bi] h 
a[a] e CPj for every possible legal input hi on {3, then IP^ = U {p h a[a]} satisfies 
EP-i. 

Proof. For each i e {1, 2, 3}, we must show that CP^ (defined above) satisfies EP-i. 

EP-1 The new antecedent p is justified in Ji, and so is justified in Therefore, 
satisfies EP-1. 

EP-2 Suppose that p h a[a\ e q h a\b\ e 7 2 with p^ = q^ and p ^ q. Then 

as p * h a [a] for all possible inputs hi on /3, there is some event such 
that in 3'2, (p * (3\bk\)a — <\a and p * (5\bk\ ^ q. It now follows that a — b. 

EP-3 It suffices to show that any saturated Jg-preantecedent is itself a IPg-antecedent. 
This follows since given any saturated Tg-preantecedent q, it must also be a 
saturated Tg-preantecedent. If input events were removed from q then the 
resulting behaviour would no longer be saturated. So, applying EP-3 in [Pg 
to q implies that q is a ^s-antecedent and therefore, a yg-antecedent. ■ 

We conclude: 

Corollciry 5.2.12 If 7 is a proto-process, the closure of 7 with respect to EP-7 is 
a proto-process. 
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The previous four lemmas show that a proto-process 7 may be enlarged to a set 
of entailments Q, so that Q is itself a proto-process which additionally satisfies EP-4 
through EP-7, i.e., an extensional process. 

To complete the proof of Theorem 15.2.51 it is necessary to show that that this 
enlarging procedure results in a unique extensional process. To this end, suppose 
that T is a proto-process and Q is any extensional process such that J" C Q and 
denote by £(?) the extensional process which results from enlarging [P. If p h x G 
£(T) is the result of closing 7 with respect to some EP-rule, then, as T C Q, it must 
be in Q as well. Therefore, £(T) C Q and by Proposition 15. 1 . 1^ ^C^) = Q- 

This now completes the proof of Theorem 15.2.51 



5.3 The polycategory of extensional processes 

In this section we establish that protocols and extensional processes form a polycat- 
egory which we will denote by £ CP. We begin by introducing some new notation. Let 
p and q be behaviours. If 7 is a channel in p, the notation p\7 is used to represent 
the behaviour p with all the events on 7 (including the channel name) removed. For 
example. 
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The notation p| |q is used to denote the behaviour whose input channel behaviours 
are the input channel behaviours of p and q and whose output channel behaviours 
are the output channel behaviours of p and q (assuming p and q have distinct channel 
names). For example. 
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We are now ready to show how to compose extensional processes. 
5.3.1 Composition of extensional processes 

Here, as in the case with syntactic processes (see Section Td. 3. 2j) . in order to compose 
two extensional processes 5" and S they must have exactly one channel name in 
common. This means that we must rename channels so that the channel names in 
5" and S are distinct except for the channel on which they will be composed. This 
may be accomplished through channel name substitution, however, as we did with 
syntactic processes, we will assume that the channel names of any two extensional 
processes are distinct unless otherwise specified. 

Definition 5.3.1 (Composition of extensional processes) Let 

9^:r-^7:X,A and g:r',7:X^A' 

be extensional processes. The set of entailments representing the composite of 3" 
and 9 on 7, denoted 3";^ S : T, T' — ^ A, A', is defined to be: 

3'n5 = {iP\lMl)^ f n9 I P ^ f E 3^ A q h g E 9 A P, = q*,} 

U {(p\7||q\7) \~ a[a] \ p h a[a] G 3" A q a 9-preantecedent A p-^ = q*} 
U {(p\7||q\7) \- ]3[a] \ p a 3'-preantecedent A q h ]3[a] e S A p^ = q*} 

In order to simplify the notation, the shorthand p;^ q will be used to denote 
P\7l|q\7 provided that p^ = q*. 

Composition of extensional processes may become clearer with a couple of ex- 
amples. 



Example 5.3.2 (Composing extensional processes) 
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1. The following two atomic entailments may be composed on 7, 
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with their composite given by: 
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2. The following entailment in 5" and S-preantecedent may be composed on 7, 
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a S-preantecedent 



with their composite given by: 
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h 0:3 [c] e 5';^g 



Lemma 5.3.3 If p ;7 q I- x, p' ;^ q' h x' e J";-! S such that p ;^ q ^ p' ;^q', then 
p ^ p' and q q'. 

Proof. We will show that p and p' are compatible; a similar argument can be used 
to show that q and q' are compatible. 
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The behaviours p and p' are compatible on channels other than 7 by definition, 
so what needs to be shown is that they are compatible on 7. To this end, suppose 
they are not compatible on 7 and consider the first position in which they differ, 
say by the events a G p and 6 G p' in 3^ (dually a G q and 6 G q' in S)- There are 
two cases to consider: 

(i) a and b are output events. Consider their justifications u h 7[a] G p and 
u' h 7[6] G p'. Clearly, = u'^ and u u' so that by EP-2, a = 6. 

(ii) a and b are input events. This implies that they are output events in q and q' 
and moreover, this must be the first place in which they differ on 7. Therefore, 
by repeating the argument used in (i) in S, a 6 

Thus, p and p' are compatible. ■ 

Proposition 5.3.4 Let IT : F — 7 : X, A and S : F', 7 : X — > A' 6e extensional 
processes. The set of entailments 5";^ S : T, T' ^ A, A' forms an extensional process. 

Proof. We must show that 5";-^ S satisfies EP-1 through EP-7. 

EP-1 Suppose p;^ q is a 3^]^ S-antecedent and a[a] is an output event in p;^ q; with- 
out loss of generahty assume that a G 9^. It follows from the definition of 
composition that p is justified in 3^ and q is justified in S so that a[a] is 
justified in p, say by u h a[a]. 

By EP-6 (in 5"), output events on 7 may be removed from u so that either 
= or the last event in is an input event. 

If = then u h a[a\ justifies a[a] in 5";^ 9- If u-y 7^ 0, then in 5" the last 
event on 7 is an input event 7[c], which means that it is an output event in 
q. Moreover, it is justified in q, say by u' h 7[c], and so u' * 7[c] is a justified 
behaviour in S. Therefore, u;^ (u' * 7[c]) h a[a] = u;^u' h a[a] G lJ';-y S and 
u;^ u' C p;^ q so that a[a] is justified in 5";^ S- 

If q; G S a similar argument in which we reverse the components shows that 
a [a] is justified in 5";^ S- 
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EP-2 Suppose that p;^ q h a[a], p';^ q' h a[h] G 5";^ S such that (p;^ q)^ = (p';^ q')^ 
and p;^ q C p';^ q'. Without loss of generahty assume that a G 3". This 
imphes p h a [a], p' h a [6] G 3" such that pQ, = p^ and by Lemma 15.3.31 
p p' so that by EP-2 in 3", a = h. 

a G S is handled similarly by considering q h a[a], q' h a [6] G S. 



EP-3 Suppose that p||p' is a 5";^ S-preantecedent and q||q' is a saturated 3" ;^ S- 
preantecedent such that p||p' q||q'- 

Consider (the possible unjustified) behaviours p in 3" and p' in S. Any output 
event a[aj\ G p must be justified in 5";^ S, say by Uj;^u^ so that Uj h a[aj] 
justifies a[aj] in 5". Similarly we may justify output events in p' in S. 

Choose the justification u;^ u' such that u* = u^^^, is maximal. By Lemma 15. 3. 31 
all the Uj's are compatible and all the u^'s are compatible so that p V u and 
p' V u' are respectively 5" and S-preantecedents. Notice that also q V u and 
q' V u' are also 5" and S-preantecedents respectively (as they are separated 
from p and p' by input events). Consider the last state on u-^: it may be 
atomic, an input state, or an output state. 

(i) Suppose it is atomic. In this case, at least one of q V u and q' V u' is 
saturated; they both may be. Suppose both are saturated. If they are both 
atomic saturated, by EP-3, this implies that qVu h / G 9^ and q'Vu' h (7 G S, 
and therefore, (q V u);^ (q' V u') h f]g = q| |q' h f\g G ff";^ S, which satisfies 
EP-3 in 3^;^ S. 

It may also be the case that one is atomic saturated and the other is (non- 
atomic) saturated. Suppose that q' V u' is atomic saturated and q V u is 
(non- atomic) saturated. By EP-3, q V u h a [a] G J for some output event 
a[a] where a 7^ 7. Thus (q V u);^ (q' V u') h a[a] = q||q' h a[a] G 3";^ S which 
satisfies EP-3. 

Now suppose only one is saturated and without loss of generality suppose that 
it is qVu which is saturated. By EP-3 again, this implies that qVu h a[a\ G 3" 
for some output event a[a], and thus, (qVu);^ (q'Vu') h a[a\ = q||q' l~ G 
3';-y S satisfying EP-3. 
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(ii) Suppose the last event on is not atomic. Then, one of q V u and q' V u' 
is saturated. Without loss of generality suppose that q V u is saturated. By 
EP-3, this implies that q V u h a[a] G 3" for some output event a[a]. If a = 7 
then u * 7 [a] and u * 7[a] are respectively 3" and S-preantecedents such that 
(u*7[a]);^ (u*7[a]) is saturated in 3";^ S. Thus, we may apply this argument 
on this preantecedent recursively to get an 3";^ S-antecedent which satisfies 
EP-3. 

So suppose that a 7^ 7. Then (q V u);^ (q' V u') h a[a] = q| |q' h a[a] E 3^;^ S 
satisfying EP-3. 

EP-4 Suppose that p;^ q h a[a], p';^ q' h l3[b] G 3";^ S with (p;^ q)^ = (p';^ q% and 
P;7 q ^ p'n q'- Without loss of generality suppose that a G 3". There are two 
cases depending on whether /5 G 3" or /5 G S- 

(i) Suppose /3 G 3". This implies that q and q' are compatible S-preantecedents 
so that by Lemma 15.1.101 q V q' is a S-preantecedent. Similarly, by Corol- 
lary 15.1. 131 p V p' h ]3[b] G 3". Notice that (p V p% = (q V q%. Then, 
p h a[a], p V p' h ]3[b] G 3" such that p^ = p'„ and p C p V p' so that by EP-4, 
pVp'*a[a] h /3[b] G 3". Composing with qVq' yields (p Vp'* a[a]);^ (q V q') h 
^[6] = (p';,q')*«[a]h:5[6]G:r;,g. 

(ii) Suppose /3 G S. By CorollaryEXH pVp' h a[a] G 9^ and qVq' h '^[b] G S. 
This implies that (pVp')*a[a] is a J'-preantecedent, and as (pVp')^ = (qVq')^ 
we may form (p V p' * a[a])]^ (q V q') h ]3[b] = (p';^ q') * a[a] h ]3[b] G 3";^ S- 

EP-5 Let p;^q h a[a] G J";-! S- If l3[b] is a legal input event for this entailment, 
then it is certainly a legal input event in its corresponding component so 
that (p;-y q) * p[b] h a[a] G 5";^ S- 

EP-6 Suppose (p;^ q) * P[b] h a[a] G 5";^ S- Without loss of generality assume that 
a G 5". There are two cases depending on whether /3 G 3" or /5 G S- 

(i) If /3 G 5" then p*]3[b] h a[a] G 3", which, by EP-6, imphes that p h a[a] G 3". 
Therefore, p;^ q h a[a] G 3";^ S- 
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(ii) If /? G S, by the definition of composition, q*/3[6] must be a S-preantecedent 
and therefore, q must also be a S-preantecedent (if q*/3[6] is any S-antecedent, 
by EP-6, r must also be a S-antecedent). Thus, p;^ q h a[a] G 9^;~y S. 

The case where a G S is handled similarly. 

EP-7 Suppose that {r * h a[a] G 3";^ S \ i & I}, where {bi \ i E 1} is the set 
of all possible input events on P given r. Without loss of generality suppose 
that a G 5". There are two cases depending on whether /? G 3" or /9 G S. 

(i) If /9 G IF then r * l3[bi\ h a[a\ came from pi * l3[bi] h a[a] G 3" and a S- 
preantecedent q^, for each i E I. We know that all the pi and q^ are justified 
and all the are compatible and all the q are compatible fLemma I5.3.3p . 
Thus, we may form \/- pi and \/- qj which are 5" and S-preantecedents respec- 
tively fCorollarv I5.1.13|) . Clearly then, (VjPi) * ^ «[«] G IF for i G /, 
and therefore, \/- pi h a[a] G 3" by EP-7. This implies that (Vi Pi);7 (Vi 1*) ^ 
a[a] = r h a[a] G 3";^ S- 

(ii) If /? G 3" then r * P[bi] h a [a] came from pj h a[a] G 3^ and a S- 
preantecedent qj * for each i E I. By definition, all the q^'s are justified 
so that each q^ is a S-preantecedent, and therefore, p^;^ q, h a[a] = r h a[a] G 
3';-y S, for any i G /. 

We have shown that the set of entailments 3";^ S satisfies EP-1 ~ EP-7 and is, 
therefore, an extensional process. ■ 

Next it is shown that the identity extensional process behaves correctly. We 
begin with a remark on the structure of the identity extensional process. 

Remark 5.3.5 Let a : X > f3 : X he the identity extensional process. If p is a 
legal sequence of events for X in the domain that ends at: 

• the last state (atomic) Z, then p||p* h 1^ G Ix- 

• an output event a[a], then (p\a)||p* h a[a] G Ix- 

• an input event a[a], then p||(p\a)* h P[a\ G Ix- 
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This follows directly from the definition of the identity process and the translation 
from a process to an extensional process (see Section IB.2.2p . 

Proposition 5.3.6 a : X — ^ (3 : X is the identity extensional process on X. 
That is, given an extensional process 5" : F — a : X, A, the composite 3^\a Ix = 3" 
(up to a renaming of channels), and given an extensional process S : r,/3 : X ^ A, 
the composite l;/3 S = S (up to a renaming of channels). 

Proof. We will prove that 3^ = 3^;a^x ', the statement S = 1x5/3 S is dual. The 
idea will be to prove that 5" C 3";^ 1^, which, by Proposition I5.1.!H| then implies 
that 3^ = 3^;a Ix- To this end, let p h x G The goal is to show that there is a 
entailment p' h x' e 3^]a Ix such that if a is substituted for j3 in this entailment we 
get back p h x G 5". 

There are three cases to consider. 

(i) X = /, where / is atomic. This implies that the last state of pa is atomic, 
say Z. As p^ is a legal sequence of events for X (in the codomain) that ends 
at atomic Z, by Remark [5.3.51 p* ||pa l~ Iz G Ix, and therefore p^a (PallPo) 
/; Iz = (p\a)||pQ- l~ / G 3^;a Ix, which is equivalent to p h / up to a renaming 
of P to a. 

(ii) X = a[a]. This implies that p * a[a] is a J'-preantecedent and that p* * a[a] is 
a legal sequence of events for X (in the domain). By our remark above, this 
implies that (p* *a[a])||pa h /3[a\ G Ix- Therefore, {p*a[a]);a ((Pa*«[«])l|Pa) l~ 
P[a] = {p\a)\\pa l~ l3[a] G 3^;a^x, which is equivalent to p h a[a] up to a 
renaming of /5 to a. 

(iii) X = 7[c], where 7 7^ a. In this case we must consider events in p on a. 

• If there are no events on a, then p h 7[c] G 3^;a Ix- 

• Suppose that the last event on a is an output a[a]. This implies that it 
is an input event in Ix and that p* * a[a] is a legal sequence of events 
for X (in the domain) so that, by our remark above, (p* * a[a])||pQ, h 
P[a] G Ix- Hence, (p* * a[a])||(pQ, * P[a]) is a Ix-preantecedent, and 
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p;«((p;*a[a])||(p, */5[a])) h 7[c] = |(p« * /3[a]) h 7(0] G 3^;„ U, 

which is equivalent to p h 7[c] up to a renaming of /9 to a. 

• Suppose that the last event on a is an input a[a\. This implies that it is 
an output event in Ix and that p* * a[a] is a legal sequence of events for 
X (in the domain) so that, by our remark above, p* ||(pa * /^H) ^ 
Ix- Then, (p* * a[a])||(pa * I3[a\) is a Ix-preantecedent, and therefore, 
p;«((p;*a[a])||(p„*/5[a])) h 7[c] = (p\a)| |(p« * /?[a]) h 7(0] e J;alx, 
which is equivalent to p h 7[c] up to a renaming of j3 io a. ■ 

It is left to show that composition of extensional processes is associative and 
satisfies the interchange law. 

Proposition 5.3.7 Composition of extensional processes is associative. That is, if 

3^ : r ^ 7 : X, A S : T', 7 : X ^ 5 : Y, A' % : T", 5 :¥ ^ M' 
are extensional processes, then (U ;-y S) '^s"^ — '3^ ]-y (9 ]5 

Proof. Composition of atomic entailments is associative as composition is asso- 
ciative in the underlying polycategory. That is, if p h {f]-yg)]5h e {J ;^ S) 15 ^H!, 
then p h {g]s /i) G 9^ ;^ (S ;5 IK) . 

To show that the composition of non-atomic entailments is associative suppose 
that q; e 3^ and consider the entailment 

(p;7 q) ;5 ^ e (9" h S) ;<5 ^ 

This implies that r is a IK-preantecedent and p;^ q h a[a] G 5" ;^ S such that = r|. 
This in turn implies that q is a 9-preantecedent and p h a[a\ G 5" such that p^ = q*. 
From these observations it should now be clear that q;5r is a S;<5 3f-preantecedent 
so that 

p;^(q;5r) ha[a] G 3" ;^ (S ;5lK) 
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The argument is similar if a G IK, and slightly different if a G 9- We describe 
the latter case and so suppose a E S and consider 

(p;^q);5r h a[a] G (3^ ;^ S) ■,s^ 

This implies that r is a IK-preantecedent and p;-y q I- a[a\ G 5" ;-y S such that = r|. 
This in turn implies that p is a ff'-preantecedent and q h a[a\ G S such that p-y = q*. 
Prom these observations it should now be clear that q;5t h a[a\ G S ;(5^K and 
therefore, 

p;^(q;5t) \-a[a] G 9^ ;^ (S -,3^) 

This argument may also be used to show that any entailment in 3" (9 ',5 "K) 
is an entailment in (5" 9) ;5lK. Thus, wc may conclude that both inclusions hold 
and composition of extensional processes is associative. ■ 

With some small changes the proof of associativity may be used to prove that 
composition satisfies the interchange law and so we conclude: 

Proposition 5.3.8 Composition of extensional processes satisfies the interchange 
law. 

All the requirements for poly categories are now satisfied proving: 

Theorem 5.3.9 Protocols and extensional processes form a polycategory. 

The polycategory of protocols and extensional process built over an arbitrary 
polycategory A will be denoted by £Ta- 

5.3.2 Poly-sums and poly-products 

The purpose of this section is to show that the polycategory £Ta has sums and 
products. We begin by defining sums and products of extensional processes. 

Let ff'i : r,7 : Xj A, for i G /, be extensional processes. The sum (or 
coproduct) on 7 of the S^j's, denoted 7(5'j)jg/ : r,7 : X^ig/^j ~^ ^5 defined to 
be the set {7[i] \ i e I}. For example, if p h x G 5"*; then 'y[k] *p h x G 
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The product is constructed dually, i.e., if Sj : F — > 5 : Yj,A, for j G J, are 
extensional processes, then the product of the S/s on 6, denoted 5{5j)jQj : F — >• 5 : 
Yljej is defined to be the set {5[i] * | 3 G J}- 

The extensional process for the k^^ injection on 7 is the set = 7 [A;] * Ix^. where 
7 is the codomain channel of Ix^.- The extensional process for the k*^ projection on 
7 is IPfc = ^[k] * (the same set as the injection), where 7 is the domain channel 
of Ix,. 

We will now work with the sum; the dual properties hold for the product. Note 
that it still must be shown that what we have defined as the "sum" is actually a sum. 
First, however, it is necessary to show that the "sum" satisfies the requirements of 
an extensional process. 

Proposition 5.3.10 ^{3^i)i^i is an extensional process. 
Proof. We must show that satisfies EP-1 ~ EP-7. 

EP-1 Suppose that ^[k] * p, for some A; e /, is a 7(5'j)ig7-antecedent and a[a\ is 
an output event in 7[A;] * p. Then a[a\ must be justified in 3^^, say by u, 
so that ^[k] * u justifies it in ^{!Ji)i^i. Thus, all 7(?'j)ig7-antecedents are 
7(3'i)je7-justified. 

EP-2 Suppose that 'y[k] * p h a[a], * q h a[b] E for some k,l E I, with 

(7[/c] * p)a = {^[1] * c{)a and j[k] * p 7[/] * q. Since they are compatible, 
k = I, and therefore, p h a[a], q h a[b] E 3^k with p^^ = q^ and p ^ q, and as 
ff'fc satisfies EP-2, a = b. 

EP-3 Let q be a saturated 7(9^j)ig7-preantecedent. It must be of the form ^[k] * q', 
for some k E I, where q' is a saturated ITfe-preantecedent. By EP-3, q' h x e 
ITfe, and thus, ^[k\ * q h x e satisfying EP-3. 

EP-4 Suppose that 7[A;] * p h a[a], 7[/] * q h l3[b] E ^/{J'i)ii=j, for some k,l E I, with 
(7[A;] * p)a = (7[/] * q)a and 7[A;] * p C 7[/] * q. It is clear then that k = I, and 
therefore, p h a[a], q h i3[b] E 3^k with p^ = q^, and p ^ q. As 3"^ satisfies 
EP-4, q * a[a] h ^[a] E 3^k and thus, 7[A;] * q * a[a] h ^[6] E 'y{3'i)ia- 
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EP-5 Let 7[A;] * p h a[a\ G '~f{3^i)i(zj, for some k & I. If j3[b] is a legal input event 
for this entailment, then it is certainly a legal input event for p h a[a] G 5"^. 
Thus, p * f3[b] h a[a] e S'k and so, 'y[k] *p* P[b] h a[a] e 'y{3'i)ia- 

EP-6 Let 7[/c] h a[a] e ^{!Ji)i^i, for some A; e 7. Then, p*^[6] h a[a] e 3^k, 

and as satisfies EP-6, p h a[a] e IJfc, and thus, ^[k] * p h a[a] e 7(IJ',)ig7. 

EP-7 Suppose {'~f[k] * p * f3[bi] h a[a] | i G /} G j{3^i)i^i, for some k & I, where 
{6j I i G /} is the set of all possible input events on (3 given 'y[k] * p. This 
implies that {p * h a[a] | i G /} G 3^k, and as 3^k satisfies EP-7, 
p h a[a] G ff'fc, and therefore, jlk] * p h a[a] G 7(5'i)ie/. ■ 

We now show that 'j{3^i)i^j is a coproduct of extensional processes. 

Proposition 5.3.11 Let IF : P, 7 : — > A, for i & I, be extensional processes. 
Then : P, 7 : X^ie/ ^ ^ is the poly- coproduct of the 's, i & I. 

Proof. We must show that the following four properties hold: 

(i) 7(Sik/ = lE^. 

(ii) Sfc ;^7(?'i)ie/ = 3^k 

(iii) ;« = 7(5'^ IK)jg/, where 7 7^ a 

(iv) J{ ;a7(?'i)je7 = 7(IK ;a3'i)ie/, where a 7^ 7 
We take each one in turn. 

(i) The goal will be to show that for any 5"^ : P, 7 : ^ A, where i G /, and for 
Bfe : q; : Xfc ^ 7 : J^iei 

which shows that a{'Bi)i^i acts as the identity on "^^^jXi. Consider an en- 
tailment in q h X G a{'Bi)i^j ;^'y{3^i)i(zi. There are three cases to consider 
depending on whether x is atomic, an output event on a, or an output event 
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on a channel other than a. However, these cases are subsumed if, in the 
following, we simply consider r to be a lxj.-preantecedent and p to be a 5"^- 
preantecedent, such that one is an antecedent (it does not matter which). 
Then, by the definition of B^, composition, and coproducts, q h x must be of 
the form: 

q h X = [pL\k\ * 7[A;] * r);^ * p) I- x 
= {(x\k\ * r);^p h X 
= a\k\ * (r;^p) h x 

By the definition of the identity extensional process, r;^p G 3"^, and so a [A;] * 
(r;^p) h X e 7(3'j)i6/ (up to renaming a to 7) . Therefore, Q;(!Bj)jg/;^ 7(3'j)jg/ C 
7(3'i)ig/, and, by Proposition 15.1.141 a(Bi)ig7;^ 7(5;,)ig/ = 7(3'i)ig7. Thus, 
is the identity on Xlie/"^*- 

(ii) Let q h X e B^;^ 7(9^j)jg/. Again, in the following, assume that r is a Ixj.- 
preantecedent and that p is a 9^fc-preantecedent. By the definition of B^., 
composition, and coproducts, q = (7[A;] * t);^ (7[A;] * p) = r;^p, and hence, 
q h X G ff"/!; (up to renaming of channels). Therefore, by Proposition 15.1.1^ 

(iii) Given a 7(5'j)jg7-antecedent 7[A;] * p, for some k E I, and a CK-preantecedent 
q, the following equality holds 

{l[k] * p);a q = l[k] * (p;a q) (when a 7^ 7) 

so that any entailment (7[/c]*p);q, q h x e 'y{3^i)iei;a may be written as 'y[k]* 
(p;Q,q) h X G 'j{3^i]a^)i£i and vise versa, which shows that 7(5'i)jg/;a J{ = 

(iv) That lK;a 7(5'i)ig/ = 'y{'K]a3^i)iei is true follows from the equality 



^■,a {l[k] *p) = -f[k] * {q;a p) (when 0^7) 
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and an argument similar to (iii) above. ■ 

With duality this now proves: 
Proposition 5.3.12 8.7a has finite poly- sums and poly-products. 

5.3.3 Extensional processes are soft 

The goal of this section is to prove the following theorem: 

Theorem 5.3.13 £Ta is the free poly category generated from A under (finite) sums 
and products. 

Notice that the inclusion functor A — > £Ta is a full inclusion and the objects 
of £CPa are the objects of SIIa (i.e., they are generated under sums and products 
from the objects of A). Thus, if it can be shown that the inclusion X is soft, the 
Whitman Theorem, Theorem 14.2. 1()[ may be used to show that £Ta is equivalent 
to SIIa, and hence, is the free polycategory generated from A under finite sums 
and products. Thus: 

Proposition 5.3.14 The inclusion morphism of poly categories A — > SCPa is soft. 

Recall that in order to show that X is soft, we need to show that X is a semi-soft 
extension and a soft extension. That is, that the map 

5^ [Hom(r; A)](„,) Hom(r; A) 

(a,i)ea{r;A) 
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is a surjection, and that 



E [Hom(r; A)]((«,i),(/3j)) 

((a,i),(/3j))e3(r,A) 



(a,i) 



{"W*3T-((a,i),(/3,3)) 

(/3,J) 



E [Hom(r;A)](,,,) 
(7,fc)e3(r,A) 



{7W*^'}(^,fc) 



Hom(r; A) 

is a cocqualizer diagram. 

Proof. To sec that X is a semi-soft extension consider the output poly-hom-set 
Hom(r; A). Any behaviour in Hom(r; A) started out saturated and therefore, must 
be of the form a[a] * 3^ where If e ^(^^)[Hom(r; A)](a,i). Thus, the map 

J2 [Hom(r; A)](„,,) ^ a\i] * :r}(„,,)Hom(r; A) 

(a,i)e3(r;A) 

is a surjection and X is a semi-soft extension. 

That I is soft follows follows from an argument similar to the syntactic case. 
Explicitly, suppose the diagram has a coequahzer (q, Q) and let h : Q ^ Hom(r; A) 
be the unique map such that q;h — {^[k] * !J(^^k)}- But {j[k] * 3^{-y,k)} is a surjection, 
and therefore, so is h. 

Now consider the two following equivalent extensional processes a[i] * and 
P[j] * S in Hom(r; A). That they are equivalent means that they must be of the 
form 

* * 3^') and * (a\i] * 9') 

respectively. However, this imphes that the extensional processes 5"' and 9' must be 
equivalent in Yl [Hom(r; A)]((a,i),(/3j)), and therefore, must be coequalized in Q 

establishing that h is an injection. 
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Therefore, the map h is a bijection and Q = Hom(r; A) estabhshing that 

({7[fc]*%,)}(,,fe), Hom(r;A)) 
is the coequahzer. ■ 

5.3.4 The additive units 

In this section we explain how the additive units are handled in this system as they 
are handled in a somewhat subtle manner. (Indeed, when Dominique Hughes first 
asked about the units, and we tried to explain it to him, we instantly got lost in the 
subtleties.) 

Recall that we are using the notation = and = 1 to denote the initial 
and final objects respectively. In what follows it will be shown that any map in 
which the domain contains the initial object and the codomain contains the final 
object is the empty set of entailments. 

Notice that if, for any map, the domain contains the initial object or the codomain 
contains the final object, i.e., 

r,OhA or rhl,A 

then the frontier of the empty behaviour has a source role (as the initial object in 
the domain and the final object in the codomain have a source role), and so cannot 
be the antecedent of any entailment. Thus, the empty set of entailments results. 
Recall that in this situation the empty set does constitute an extensional process 
(Proposition 15.2."^ . Moreover, notice that if we were to compose an extensional 
process with either 

r,OhA or rhl,A 

the resulting frontier would also contain a protocol with a source role and no entail- 
ments could result. 

The roles are also used to determine where a given protocol is an initial or a 
final object. That is, the initial (resp. final) object may be "hidden" within some 
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structure and the roles are used to determine this. For example, = + is the 
initial object, in the domain, its role is calculated as 



Similarly for 1 = 1 x 1 in the codomain or any other "hidden" initial or final objects. 
Consider a protocol in the domain of the form 



o 
/ 



o 

/ \ 







which contains an initial object and so is really just the protocol A. As we can see 
from the tree, this is indeed the case as the only legal transition is the one which 
leads to A. 

In the free polycategory with sums and products one does not expect a map 
1 — > 0. This map is prevented from occurring by the rule EP-3. As both 1 in 
the domain and in the codomain are "output" protocols the empty behaviour 
is saturated in 1 — > 0. As the empty behaviour is both a preantecedent and a 
saturated preantecedent it fits the premise of EP-3. However, it is clear that the 
empty behaviour cannot be made into an entailment as there is nothing to output, 
and so, this "set" of entailments is not an extensional process. 



Chapter 6 

Conclusion and Further Directions 



In this thesis we began by introducing a logic SII, and constructing a (syntactic) 
polycategory of protocols and processes from this logic. This polycategory was 
shown to be the free polycategory with finite sums and finite products. To char- 
acterize polycategories of this type we chose to use Joyal's notion of softness, and 
so it was necessary to extend this notion to the polycategorical case. Following the 
lead of Joyal and Cockett and Seely, we prove a "Whitman theorem" which gives 
the characterization. Next, it is shown how proofs in our logic can be interpreted 
as concurrent channel-based processes by providing a process semantics. These pro- 
cess are organized into a polycategory of protocols and extensional processes. Using 
softness, we show that this polycategory is equivalent to the syntactic polycategory. 
This then establishes that every extensional process is the denotation of a unique 
cut-free proof in SII, proving that this model is full and faithfully complete. 

Further directions The next obvious step is to add the multiplicative connectives 
of linear logic into our interpretation. We have a fairly detailed idea of how this can 
be accomplished, but it still needs to be fully formalized. Additionally, from the 
viewpoint of process semantics, one would also like to model infinite processes. This 
leads into fixed point logics and circular proofs |San02aj where there is considerable 
gaps to be filled. 
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Appendix A 

Resolving Critical Pairs 



The following notation will be used to reduce the number of cases of certain rewrites. 
Let S{g) denote any of the following morphism, 



Then, f;^6{g) ^ S{f;^g) denotes 

f;^5{ai ^ Qi} =^ 5{ai ^ f;^gi}, f]y^[a]{g) =^ V[a](/;^t/), 
f;r^S{ai ^ gi) ^ 6{ai ^ f]^gi), f;^ 6 [a]{g) ^ S [a]{f]^g) 

and similarly for 5{f)]^g ^ S{f;^g). 

The resolutions are as follows. The dual rewrite, if there is one, is indicated in 



S{ai^gi}, 6{ai^gi), 



6 [a]{g), 6 [a]{g) 



[-]■ 



(l)-(2) obvious. 



(l)-(3) [(2)-(4)] 





"{Oi ^ fi}i ^ 



"{(1)} 
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(l)-(5) [(2)-(6)] 



"a[a](/);^l 

(1)^ ^(5) 





(l)-(7) [(2)-(8)] 



«{(!)) 



^[a](/);^l 



q;(/;^1) 





(l)-(9) [(2)-(10)] 



"((1)) 





a;(aj ^ fi)i 



«((!)) 



This handles all critical pairs involving (1) and (2). We now look at any critical 
pairs involving (3) and (4). 



(3)-(4) 



Oi{ai ^ fi}i;jP{bj ^ gj)j 





a{(4)} 



p{bj ^ a{ai ^ fi}ihgj)j 

/3({3)) 



a{ai ^ P{bj ^ fi]^gj)j}i I (^3) A P{bj ^ a{ai ^ fi;^gj}i) 
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(3)-(6) [(4)-(5)] 



"{fli ^ fijfn P Mia) 





a{ai ^ fi;^ 13 [h]{g)}i 

a{(6)} 



13 [h]{a{ai ^ fiju^g) 

^((3)) 



a{ai ^ (3 [h]{fi]^g)]i N 



(17) 



=1 (3 [h]{a{ai ^ fi;^g}i) 



(3)-(8) [(4)-(7)] 



a{ai ^ fiji]^ p [b]{g) 

(3).^ ^.(8) 





a{ai ^ fi'n [b]{g)}i 

a{(8)} 



/3 [6](a{ai fijihg) 

?((3)) 



(15) 



=1 /3 [b]{a{ai ^ U^gh) 



(3)-(10) [(4)-(9)] 



Oi{ai ^ fi}i;'rP{bj ^ gj}j 





a{ai ^ UjP{bj ^ gj}j}i 

a{(10)} 



P{bj ^ a{ai ^ fihhgjjj 



a{ai ^ P{bj ^ fingjjjh I ^^3^ I P{bj ^ afoi ^ /i;7 5j}i} 
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(3)-(13) [(4)-(14)] 



a{ai i3{bj ^ fijjjju-yg 

(3)^^^ ^^13);l 




a{ai ^ P{bj ^ fij}j;jg}i 




a{(3)} 



P{bj ^ a{ai ^ fij}i}j;'y9 

(3) 

P{bj ^ a{ai ^ fij}i;jg}j 

mm 



a{ai ^ P{bj ^ fij;jg}j}i I ^^3) I P{bj ^ a{ai ^ fij;jg}i} 



(3)-(15) [(4)-(16)] 

a{ai ^ (3 [bk\{fi)]^g}i <^ a{ai ^ (3 gr |=| (3 [bf,\{a{ai ^ 

There are two subcases to consider, 
(a) /3 ^ 7- 



a{ai ^ (3 [b]{fi)}i]^g 

(3).^ ^^^15);1 





a{ai ^ (3 [b\{fi)\^g}i 



a{(5)} 



(3 [b\{a{ai ^ fi}i);jg 

(5) 

p [b]{a{ai ^ fiji^g) 

?{(3)) 



a{ai ^ (3 [b]{fi;jg)}i ^ 



(15) 



^ (3 [b]{a{ai ^ U-ygji) 
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(b) (3 = J. Here we may assume that g = 7{6j i— >• gjjj. 

a{ai ^ ^[bk]{fi)}ih7{bj ^ 9j}j 

(3)^^^ ^^^(15) ;1 





a{ai ^ 7 [bk]{fi)n'y{bj ^ gjjjji 7 [bk]{a{ai ^ fi}i);yl{bj ^ gj}j 

a{(ll)} (11) 



(3)-(17) [(4)-(18)] 



a{ai ^ (3 [b]{fi)}i;^ g 

(3)^^ ^^(17);l 





a{ai ^ p [b]{fi);yg}i 



«{(7)} 



f3 [b]{a{ai ^ fi}i);^g 

(7) 

P [b]{a{ai ^ fi}i]^g) 

?((3)) 



a{ai ^ f3 [b]{fi;^g)}i N 



(17) 



=1 /3 [b]{a{ai ^ fi]^g}i) 



(3)-(19) [(4)-(19)] 



a{ai ^ P{bj ^ fij)j}i;'yS{g) 




a{ai ^ p{bj ^ fij)jh^i9)}i 




P{bj ^ a{ai ^ fij}i)j]^5{g) 



There are three subcases to consider. 
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(a) /? 7^ 7 



a{ai ^ (3{bj ^^ fij)j}fn ^ig) 

(3)^.^^ ^*^19);l 




a{ai ^ (5{hj ^ fij)jh^i9)}i 




a{(3)} 



P(bj ^ a{ai ^ 5{g) 

(3) 

P{bj ^ a{ai ^ fij}i;jS{g))j 



a{ai ^ P{bj ^ fijnS{g))j)}i I ^^^^ I P{bj ^ afa^ ^ fij;jS{g)}i) 



(b) /3 = 7 and 5 7^ 7 





a{(4),(6),(8),(10)} 



-f{bj ^ Q;{ai ^ fij}i)jhS{g) 

{4),(6),{8),(10) 

5(7(6^- 1-^ ajaj 1-^ fij}i)jhg) 
<5({i9);i) 

5(a{ai ^ 7(6j ^ fij)j}ih9) 
m)) 



a{ai ^ d{j{bj ^ fij)j]^g)]i 



(19),(17),(15),(13) 



i 5{a{ai ^ 7(6j ^ fij)jn9}i) 
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(c) /? = 7 and 6{g) = VN(^) 



a{ai ^ ^/{bj ^ fij)j}ih'l[bk]{9) 

^W19);1 





a{(12)} (12) 

Oi{ai ^ fikn9}i Oi{ai ^ fik}ih9 

This handles all critical pairs involving (3) and (4). We now look at any critical 
pairs involving (5) and (6). 



(5)-(6) 



a[a]{f);, (5[h]{g) 





«((6)) 



(5[h\{-^[a\{f);,g) 

?((5)) 



^[a]{P[h]{f-,g)) I I P[h]{-^[a]{f-,g)) 

(5)-(8) [(6)-(7)] 

^[a]{f)-,^[h]{g) 





a[a]{f-,P[h]{g)) 

a({8)) 



fi[h]{a[a]{f);,g) 

?((5)) 



^[a]{(3[h]{f-,g)) N 



(20) 



^ (3[h]{-^[a]{f-,g)) 
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(5)-(10) [(6)-(9)] 



"« [a](/);7/^{^i ^ 9i}i 





'a[a]{f;^ I3{bi ^ 

«((io)) 
'a[a\{P{bi ^ f]'ygi}i) 



(15) 



(3{hi ^ 'a[a\{f);^ gi}i 

m)} 

1-^ "a[a](/;^g'i)}i 



(5)-(15) [(6)-(16)] 



"a [a](/3{6i 1-^ /i}j);7fl' 

^=W15);1 





"a [a](/3{6j i-^ /j}j;7 5') 



"((3)) 



(15) 



«"N(/i)}i;7^ 

(3) 

"«[«](/») ;7 fl'li 
/3{(5)} 



(5)-(18) [(6)-(17)] 



"a[a](/3(6i fi)i)hS{g) 





(5{hi ^ a [a]{fi))i]^ 5{g) 



There are three subcases to consider. 
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(a) /? 7^ 7- 



^W18);1 





a({3)) 



a [a](/3(6j i-^ fihS(g))i) 1= 



(18) 



1-^ a[a\{fi))i;j5{g) 

(9) 

/3((5)) 

1-^ 'a[a\{fi;jS{g)))i 



(b) /3 = 7 and 7^ 7. 



"a[a](7(6i ^ fi)i)hS{g) 

(5)^,^ ^^^(18);1 





"a[a](7(6i ^ fi)inS{g)) 



^((4),(6),(8),(10)) 



7(6i ^ Q;[a](/i))i;^(5(^) 

(4),(6),(8),(10) 

(5(7(6i ^ "a [a](/i))i;^c/) 

5((18);1) 

S{'a[a]{'y{bi ^ fi)i)]^g) 

5({5)) 



a [a](5(7(6i fi)ihg)) ^ 



(18),(22),(20),(15) 



A 5(a[a](7(6j fi)i]^g)) 
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(c) /? = 7 and d{g) = 



(5),,,^ ^^18);l 




'a[a\{-f{bi ^ fi)ih'l[bk\i9)) 

«((12)) 




7(6i ^ a[a](/i))i;^ lihKg) 

(12) 

"aN(/fe);7^ 



(5) 



(5)-(20) [(6)-(21)] 

a[<^]0[bk]{f)hg) ^ a[a]{P[bk]{f)y„g ^ ~P[bk]{a[a]{f)y„ g 

There are two subcases to consider, 
(a) /3 ^ 7- 

a[a]{i3[b,]{f)) 

i^).^ ^^^(20) ;1 





«N(/3N(/);7 5) 



"((5)) 



/3N(«N(/));75 

(5) 

?[6,](7^[a](/);^5) 

?({5)) 



7?[a](/3[6fe](/;,^)) N 



(20) 



H /3[6,](^[a](/;^^)) 
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(b) (3 = J. Here we may assume that g = 7{6i h- >• gi}i 



"a H(7'N(/));7 7{&i ^ 9i}i 

(5),,,^ ^^20) ;1 




'^[a]i'l[bk]if)hl{bi ^ 9i}i) 




(5) 



7 [^'fc](aN(/));7 7{^'i ^ 

(11) 



(5)-(22) [(6)-(21)] 



«[a](/5[&](/));7^ 

(5)^^^ ^^^(22) ;1 




«N(/3[&](/);7 5) 




"((7)) 



/3[fc](«N(/));7^ 

(7) 

^[b](-^[a](fy,^g) 

?((5)) 



7?[a](/3[6](/;^^)) ^ 



(22) 



^ /3[6](7?[a](/;^5)) 



This handles all critical pairs involving (5) and (6). We now look at any critical 
pairs involving (7) and (8). 
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(7)-(8) 



a[a]{fy„ (3[b]{g) 





"^m-,, P[b]{g)) 

"((8)) 



/3[&](«H(/);7^) 



«H(/5[6](/;,5)) ^ 
(7)-(10) [(8)-(9)] 



(22) 



^ P[b]{1^[a]{f;,g)) 



^[o]{f)-n /3{bi ^ gi}i 

(7)^^ ^^(10) 





^[alifh^i^i ^ 9i}i) 

"((10)) 



I3{bi ^ ^[a\{f);^gi}i 



a [a]{p{bi ^ f]^gi}i) N 



(17) 



=1 (5{bi a[a]{f]^g)]i 



(7)-(16) [(8)-(15)] 



^[a](/3(6j fi)i);jS{g) 





^[a]{p{bi fi)i;^S{g)) 



(5{bi^ a [a]{fi))i]^5{g) 



There are three subcases to consider. 
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(a) /? 7^ 7 



^[a](/5(6i ^ fi)i)-nS{g) 

(7)^^^ ^^16);l 




^[a\{l3{bi ^ fi)i;^ 5(g)) 




"((9)) 



a [a\{P(bi ^ fi;'y5(g))i) 1= 



(16) 



P{bi ^ a[a\{fi))i;j5{g) 

(9) 

P{bi ^ ^[a]{fi);jS{g))i 

/3((5)) 

P{bi ^ ^[a\{fi;jS{g)))i 



(b) /3 = 7 and 7^ 7. 



^[a](7(6i ^ fi)i)hS{g) 

iV^^^ ^^^(16);l 





^[a](7(6i ^ fi)inS{g)) 



^((4),(6),(8),(10)) 



7(6i ^ Q;[a](/i))i;^(5(^) 

(4),(6),(8),(10) 

S{-f{bi ^ 'a[a]{fi))i;^g) 

5((16);1) 

5(^[a](7(6i ^ fi)i)h9) 



a [a](5(7(6i fi)ihg)) ^ 



(16),(21),(22),(17) 



A 5(a[a](7(6j fi)i]^g)) 
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(c) /? = 7 and d{g) = 



(7)^^^ ^^16);1 




«((12)) 




(7) 



7(6i ^ a[a]{fi))i;^ lihKg) 

(12) 

^N(/fe);7^ 



(7)-(17) [(8)-(18)] 



Oi[a\{f3{bi ^ fi}i)\^g 





*a[a\{(3{hi ^ fi}i;jg) 



"((3)) 



P{bi 



(17) 



^N(/i)}i;7^ 

(3) 

/3{(5)} 
^[«](/i;7^)}i 



(7)-(21) [(8)-(20)] 



(J)^ ^i21);l 





'a[a]{f5[h\{f)-,g) 



a({3)) 



P[h]{a[<AU))n9 

(3) 

^[h]C^[a]{f)-,g) 

?((5)) 



Ha\{(5[h\{f;,g))^ 



(21) 



H /3[&](V[a](/);^^)) 



(7)-(22) [(8)-(22)] 



« N( /3 N(/);7 5) ^ « N( /3 [^'fe](/));7^ ^ N( « N(/)); 



'7 



There are two subcases to consider, 
(a) /3 ^ 7- 



«[«](/?N(/));7^ 

^^(22) ;1 





«N(/3[&;t](/);7^) 



"((3)) 



/3[6,](^[a](/));^^ 

(3) 

?N(«N(/);7 5) 

^((5)) 



^[a](/3[6fe](/;^^)) ^ 



(22) 



^ /?[6,](^[a](/;^^)) 
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(b) (3 = J. Here we may assume that g = 7{6i h- >• gi}i 

^H(7'N(/));7 7{&i ^ 9i}i 

^W22);l 





aN(/;7«/ik) ^ 



(7) 



7 [^'fc](aN(/));7 7{^'i ^ 

(11) 



This handles all critical pairs involving (7) and (8). We move on now to look at any 
critical pairs involving (9) and (10). 



(9)-(10) 





a((10)) 



/3{bj ^ a{ai ^ f 1)1^93)3 
m)} 



a{ai ^ P{bj fihgj}j)i N 



(19) 



=1 /3{bj a{ai fihgj)i}j 



(9)-(14) [(10)-(13)] 



a{ai 1-^ I3{bj 1-^ fij)j)in S{g) 





a{ai ^ /3(6j ^ fij)jhS{g))i 



(3{bj ^ a{ai ^ fij)i)jhS{9) 



There are three subcases to consider. 
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(a) (5^^. 




a{ai ^ (5{hj ^ fij)jh^i9))i 




am) 



P{bj ^ a{ai ^ fij)i)j;^5(g) 

(9) 

P{bj ^ a{ai ^ fij)i]^5{g))j 

/3((9)) 



a{ai ^ (3{hj ^ fijnS{g))j)i I ^^^^ I P{bj ^ a{ai ^ fif,^ 5{g))i) 



(b) /3 = 7 and 5 7^ 7. 



a{ai ^ 7(6j ^ fij)j)ih5{9) 





a{(4),(6),(8),(10)} 



-f{bj ^ Q;(ai ^ fij)i)jhS(g) 

(4),(6),{8),(10) 

5(7(6j 1-^ Q;(ai 1-^ fij)i)jhg) 
<5({14);1) 

5(a(ai ^ 7(6j ^ fij)j)ihg) 



a{ai ^ S{j{bj ^ fij)j]^g))i 



(14),(16),(18),(19) 
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(c) /? = 7 and d{g) = VN(^) 



a{ai ^ j{bj 



(9) 




Ji4);i 




a{ai ^ 7(6j ^ /y)^;^ 7 [6fe](^))j 7(^'j ^ ^ /^O^jSt 7 [h]ig) 

«((12)) (12) 

1-^ fikn9)i < a;(ai fik)fn9 



(9)-(16) [(10)-(15)] 



(9)^^ ^^16);! 





a{ai ^ 13 [h]{fi);^g)i 



«({7)) 



a{ai ^ f3 [b]{fi;^g))i 1= 



(16) 



f3 [b]{a{ai ^ fi)i);^ g 

(7) 

P [b]{a{ai ^ fi)i]'yg) 
P [b]{a{ai ^ fi]^g)i) 



(9)-(18) [(10)-(17)] 

a{ai ^ (3 [bk\{fi)]i g)i <S= a{ai ^ (3 [bk\{fi))i;^g^^ (3 [bk\{a{ai ^ fi)i)]'ig 



There are two subcases to consider. 



(a) (5^^. 



a{ai ^ (5 [hk]{fi))i;^g 

(9)„^^ ^^*^(18);l 





(5) 

?((9)) 

a{ai ^ (3 [hk\{fi]^g))i I (^g) ^ fih9)i) 

(b) = 7- Here we may assume that (7 = 7(6^ i-^ 

^^^9)^^^ ^^^^^^ 
a((ll)) (11) 

^ fih9k)i Q;(ai 1-^ fi)ih gk 
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(9)-(19) [(10)-(19)] 



a{ai (3{bj ^ fij}j)ihg 

(9)^^^ ^^19);l 




a{ai ^ (3{hj ^ fij}jh9)i 




a((3)) 



(3) 

P{bj ^ a{ai ^ fij)i]^g}j 



a{ai ^ (5{hj ^ fij;jg}j)i I ^^^^ ^ P{bj ^ a{ai ^ fij]^g)i} 



This handles all critical pairs involving (9) and (10). We move on now to look at 
any critical pairs involving (11) and (12). 



(11)-(13) [(12)-(14)] 





(10) 

a{hj ^ fhgkjjj 



a{(ll)} 



(10) 

(^{bj ^ ^[ak]{fynl{ai ^ gij}i}j 



(11)-(15) [(12)-(16)] There are two subcases on the structure. 
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(a) ^[ak]ia{bj ^ fj}j)h7{ai ^ 9i}i 



^[ak]{a{bj ^ fj}j)-nj{ai ^ gi}i 

^^(15);l 





a{hj ^ fj}jh9k 

(3) 



o^{bj ^ fjh9k}j ^ 



a{(ll)} 



a{bj ^ 7 [ak]{fj)}j-nl{ai ^ gi}i 

(3) 



(b) ~l[ak]{f)h^Wi ^ '^[b]{9i)}i 



^[ak]{f)-n^{ai ^ 'a[b]{gi)}i 





f;y'a[b]{gk) 

(8) 

'^[b]ifh9k) 



«((ii)) 



(8) 

'^[b]{'l[ak]{f)hl{ai ^ gi}i) 



(11)-(17) [(12)-(18)] 



~iWk]if)h^{(^i ^ *^[b]igi)}i 





f;^'a[b]{gk) 

(6) 



a[^'](/;7^ik) ^ 



7 [afe](/);7 a [&](7{ai ^ 

(6) 

^[^']( 7^K](/);7 7{«i ^ 9i}i) 
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(11)-(18) [(12)-(17)] 



^[ak]{a{bj ^ fj)j)h7{ai ^ 9i}i 




o^ibj ^ fj)jhgk 

(9) 




a((ll)) 



(9) 

^ 7^K](/j);7 7{ai ^ gi}i)j 



(11)-(19) [(12)-(19)] 



0^K](/);7 7{aj Oi{bj ^ gij)j}i 

(11).^*^ ^^1;(19) 





(4) 



a((ll)) 



7 K](/);7Q;(^'j ^ 7{ai ^ gij}i)j 

(4) 

1-^ 7'[afe](/);7 7{«i ^ gij}i)j 



(ll)-(20) [(12)-(21)] 





(5) 



« M( 7 [ak]{f))h^{(^i ^ 9i}i 

(5) 

"a [^]( 7^K](/);7 7{ai ^ ^iji) 
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(ll)-(22) [(12)-(22)] 



~j[ak]Ca[b]{f));^-f{ai ^ gi}i 




(7) 




a[^'](/;7^ifc) ^ 



«((11)) 



« [^]( 7 K](/));7 7{ai ^ 

(7) 



This handles all critical pairs involving (11) and (12) 



